漏洞信息详情
AirMagnet 控制台跨应用程序脚本攻击漏洞
- CNNVD编号:CNNVD-200611-063
- 危害等级: 低危
- CVE编号: CVE-2006-5742
- 漏洞类型: 输入验证
- 发布时间: 2006-11-06
- 威胁类型: 远程
- 更新时间: 2006-11-30
- 厂 商: airmagnet
- 漏洞来源: ptsecurity is cred...
漏洞简介
AirMagnet Enterprise中的AirMagnet Enterprise控制台和远程传感器控制台(Laptop),远程攻击者从特定Internet Explorer嵌套对象中向SSID模板值注入任意Web脚本或HTML,又称\"跨应用程序脚本攻击(XAS)\"。
漏洞公告
参考网址
来源: BID
名称: 20602
链接:http://www.securityfocus.com/bid/20602
来源: BUGTRAQ
名称: 20061025 Web-style Wireless IDS attacks
链接:http://www.securityfocus.com/archive/1/archive/1/449739/100/100/threaded
来源: BUGTRAQ
名称: 20061018 Airmagnet management interfaces multiple vulnerabilities
链接:http://www.securityfocus.com/archive/1/archive/1/449119/100/200/threaded
来源: BUGTRAQ
名称: 20061117 Re: Airmagnet management interfaces multiple vulnerabilities
链接:http://www.securityfocus.com/archive/1/archive/1/451978/100/100/threaded
来源: SECUNIA
名称: 22475
链接:http://secunia.com/advisories/22475
受影响实体
- Airmagnet Enterprise:7.5
补丁
暂无
评论