Vulnerability CVE-2006-3073
Published: 2006-06-19   Modified: 2012-02-12

Description:
Multiple cross-site scripting (XSS) vulnerabilities in the WebVPN feature in the Cisco VPN 3000 Series Concentrators and Cisco ASA 5500 Series Adaptive Security Appliances (ASA), when in WebVPN clientless mode, allow remote attackers to inject arbitrary web script or HTML via the domain parameter in (1) dnserror.html and (2) connecterror.html, aka bugid CSCsd81095 (VPN3k) and CSCse48193 (ASA). NOTE: the vendor states that "WebVPN full-network-access mode" is not affected, despite the claims by the original researcher.

Type:

CWE-Other

CVSS2 => (AV:N/AC:H/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.6/10
2.9/10
4.9/10
Exploit range
Attack complexity
Authentication
Remote
High
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None
Affected software
Cisco -> Asa 5500 
Cisco -> Vpn 3000 concentrator 
Cisco -> Vpn 3000 concentrator series software 

 References:
http://securitytracker.com/id?1016252
http://www.cisco.com/warp/public/707/cisco-sr-20060613-webvpn-xss.shtml
http://www.securityfocus.com/archive/1/436479/30/0/threaded
http://www.securityfocus.com/bid/18419
http://www.vupen.com/english/advisories/2006/2331
https://exchange.xforce.ibmcloud.com/vulnerabilities/27086
Copyright 2024, cxsecurity.com

 

Back to Top