Vulnerability Details CVE-2005-2186
Multiple cross-site scripting (XSS) vulnerabilities in McAfee IntruShield Security Management System allow remote authenticated users to inject arbitrary web script or HTML via the (1) thirdMenuName or (2) resourceName parameter to SystemEvent.jsp.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.7%
CVSS Severity
CVSS v2 Score 1.9
References
- http://marc.info/?l=bugtraq&m=112066594312876&w=2
- http://marc.info/?l=bugtraq&m=112076813804503&w=2
- http://secunia.com/advisories/15961
- http://securitytracker.com/id?1014422
- http://marc.info/?l=bugtraq&m=112066594312876&w=2
- http://marc.info/?l=bugtraq&m=112076813804503&w=2
- http://secunia.com/advisories/15961
- http://securitytracker.com/id?1014422
Products affected by CVE-2005-2186
-
cpe:2.3:h:mcafee:intrushield_security_management_system:-