Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2435

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-2435
Last Modified 07 Mar 2011 09:36:12
Published 17 May 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2435

Summary

Unspecified vulnerability in IBM WebSphere Application Server 5.0.2 and earlier, and 5.1.1 and earlier, has unknown impact and attack vectors related to "Inserting certain script tags in urls [that] may allow unintended execution of scripts."

Vulnerable Systems

Application

  • Ibm Websphere Application Server 5.0.0

  • Ibm Websphere Application Server 5.0.1

  • Ibm Websphere Application Server 5.0.2

  • Ibm Websphere Application Server 5.1.0

  • Ibm Websphere Application Server 5.1.1


References

AIXAPAR - PK15571

CONFIRM - http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27006881

CONFIRM - http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27006879

SECUNIA - 20032

BUGTRAQ - 20060509 IBM Websphere Application Server Multiple Vulnerabilities

VUPEN - ADV-2006-2552

VUPEN - ADV-2006-1736

SREASON - 910


Last Updated: 27 May 2016 10:42:28