Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2653

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-2653
Last Modified 07 Mar 2011 09:36:43
Published 30 May 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-2653

Summary

Cross-site scripting (XSS) vulnerability in login_error.shtml for D-Link DSA-3100 allows remote attackers to inject arbitrary HTML or web script via an encoded uname parameter.

Vulnerable Systems


References

VUPEN - ADV-2006-2028

BUGTRAQ - 20060527 D-Link DSA-3100 Cross-Site Scripting

MISC - http://www.eazel.es/media/advisory003-D-Link-DSA-3100-Cross-Site-Scripting.html

XF - dlink-airspot-uname-xss(26759)

BID - 18168

SECTRACK - 1016173

SREASON - 980

SECUNIA - 20343


Last Updated: 27 May 2016 10:42:42