CVE-2006-5416

Severity

51%

Complexity

49%

Confidentiality

106%

Cross-site scripting (XSS) vulnerability in my.acctab.php3 in F5 Networks FirePass 1000 SSL VPN 5.5, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the sid parameter.

Cross-site scripting (XSS) vulnerability in my.acctab.php3 in F5 Networks FirePass 1000 SSL VPN 5.5, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the sid parameter.

CVSS 2.0 Base Score 5.1. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:P/I:P/A:P).

Overview

First reported 18 years ago

2006-10-20 14:07:00

Last updated 6 years ago

2018-10-17 21:42:00

Affected Software

F5 FirePass 1000 SSL VPN 5.5

5.5

References

22444

Vendor Advisory

1752

1017076

http://www.procheckup.com/Vulner_PR0603b.php

Patch

20061017 PR06-03b: F5 Firepass 1000 SSL VPN version 5.5 vulnerable to Cross-Site Scripting

20583

Patch

ADV-2006-4083

firepass-myacctab-xss(29631)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.