Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3073

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-3073
Last Modified 07 Mar 2011 09:37:46
Published 19 Jun 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3073

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the WebVPN feature in the Cisco VPN 3000 Series Concentrators and Cisco ASA 5500 Series Adaptive Security Appliances (ASA), when in WebVPN clientless mode, allow remote attackers to inject arbitrary web script or HTML via the domain parameter in (1) dnserror.html and (2) connecterror.html, aka bugid CSCsd81095 (VPN3k) and CSCse48193 (ASA). NOTE: the vendor states that "WebVPN full-network-access mode" is not affected, despite the claims by the original researcher.

Vulnerable Systems

Operating System

  • Cisco Vpn 3000 Concentrator 2.0

  • Cisco Vpn 3000 Concentrator 2.5.2.a

  • Cisco Vpn 3000 Concentrator 2.5.2.b

  • Cisco Vpn 3000 Concentrator 2.5.2.c

  • Cisco Vpn 3000 Concentrator 2.5.2.d

  • Cisco Vpn 3000 Concentrator 2.5.2.f

  • Cisco Vpn 3000 Concentrator 3.0

  • Cisco Vpn 3000 Concentrator 3.0.3.a

  • Cisco Vpn 3000 Concentrator 3.0.3.b

  • Cisco Vpn 3000 Concentrator 3.0.4

  • Cisco Vpn 3000 Concentrator 3.1

  • Cisco Vpn 3000 Concentrator 3.1%28rel%29

  • Cisco Vpn 3000 Concentrator 3.1.1

  • Cisco Vpn 3000 Concentrator 3.1.2

  • Cisco Vpn 3000 Concentrator 3.1.4

  • Cisco Vpn 3000 Concentrator 3.5%28rel%29

  • Cisco Vpn 3000 Concentrator 3.5.1

  • Cisco Vpn 3000 Concentrator 3.5.2

  • Cisco Vpn 3000 Concentrator 3.5.3

  • Cisco Vpn 3000 Concentrator 3.5.4

  • Cisco Vpn 3000 Concentrator 3.5.5

  • Cisco Vpn 3000 Concentrator 3.6

  • Cisco Vpn 3000 Concentrator 3.6.1

  • Cisco Vpn 3000 Concentrator 3.6.7

  • Cisco Vpn 3000 Concentrator 3.6.7d

  • Cisco Vpn 3000 Concentrator 4.0

  • Cisco Vpn 3000 Concentrator 4.0.1

  • Cisco Vpn 3000 Concentrator 4.0.5.b

  • Cisco Vpn 3000 Concentrator 4.1

  • Cisco Vpn 3000 Concentrator 4.1.5.b

  • Cisco Vpn 3000 Concentrator 4.1.7.a

  • Cisco Vpn 3000 Concentrator 4.1.7.b

  • Cisco Vpn 3000 Concentrator 4.7

  • Cisco Vpn 3000 Concentrator 4.7.1

  • Cisco Vpn 3000 Concentrator 4.7.1.f


References

XF - cisco-webvpn-xss(27086)

VUPEN - ADV-2006-2331

BID - 18419

BUGTRAQ - 20060608 SSL VPNs and security

CISCO - 20060613 WebVPN Cross-Site Scripting Vulnerability

SECTRACK - 1016252

SECUNIA - 20644

OSVDB - 26454

OSVDB - 26453


Last Updated: 27 May 2016 10:42:52