Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3230

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-3230
Last Modified 07 Mar 2011 09:38:08
Published 27 Jun 2006 06:05:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3230

Summary

Cross-site scripting (XSS) vulnerability in index.tmpl in Azureus Tracker 2.4.0.2 and earlier (Java BitTorrent Client Tracker) allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Vulnerable Systems

Application

  • Azureus Tracker 2.2.0.2

  • Azureus Tracker 2.3.0.6

  • Azureus Tracker 2.4.0.2


References

VUPEN - ADV-2006-2484

SECUNIA - 20755

XF - azureus-index-xss(27300)

BID - 18596

OSVDB - 26768

SECTRACK - 1016357

MISC - http://pridels0.blogspot.com/2006/06/azureus-2402-xss-vuln.html


Last Updated: 27 May 2016 10:42:56