Vulnerability Details CVE-2006-5742
The AirMagnet Enterprise console and Remote Sensor console (Laptop) in AirMagnet Enterprise before 7.5 build 6307 allows remote attackers to inject arbitrary web script or HTML from a certain embedded Internet Explorer object into an SSID template value, aka "Cross-Application Scripting (XAS)".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/22475
- http://www.securityfocus.com/archive/1/449119/100/200/threaded
- http://www.securityfocus.com/archive/1/449739/100/100/threaded
- http://www.securityfocus.com/archive/1/451978/100/100/threaded
- http://www.securityfocus.com/bid/20602
- http://secunia.com/advisories/22475
- http://www.securityfocus.com/archive/1/449119/100/200/threaded
- http://www.securityfocus.com/archive/1/449739/100/100/threaded
- http://www.securityfocus.com/archive/1/451978/100/100/threaded
- http://www.securityfocus.com/bid/20602
Products affected by CVE-2006-5742
-
cpe:2.3:a:airmagnet:enterprise:7.5