CVE-2006-1960 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-1960
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1960

Description: Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13 allows remote attackers to inject arbitrary web script or HTML, possibly via the displayMsg parameter to archiveApplyDisplay.jsp, aka bug ID CSCsc01095.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25883 ST 1015965 SAID Secunia Advisory: SA19736 OSVDB 24812 MISC http://www.assurance.com.au/advisories/200604-cisco.txt CISCO http://www.cisco.com/warp/public/707/cisco-sa-20060419-wlse.shtml BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/431367/30/5490/threaded http://www.securityfocus.com/archive/1/archive/1/431371/30/5490/threaded BID 17604

Return to the previous page.