Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2353

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-2353
Last Modified 07 Mar 2011 12:00:00
Published 15 May 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2353

Summary

NmConsole/DeviceSelection.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to redirect users to other websites via the (1) sCancelURL and possibly (2) sRedirectUrl parameters.

Vulnerable Systems

Application

  • Ipswitch Whatsup Professional 2006

  • Ipswitch Whatsup Professional 2006 Premium


References

XF - whatsup-deviceselection-user-redirect(26502)

VUPEN - ADV-2006-1787

BUGTRAQ - 20060511 Ipswitch WhatsUp Professional multiple flaws

OSVDB - 25473

SREASON - 897

SECUNIA - 20075


Last Updated: 27 May 2016 10:42:26