admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2006/CVE-2006-49xx/CVE-2006-4958.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

124 lines
4.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2006-4958",
"sourceIdentifier": "cve@mitre.org",
"published": "2006-09-23T10:07:00.000",
"lastModified": "2018-10-17T21:40:32.937",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.20.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, or (7) test-cgi. NOTE: This information is based upon a vague initial disclosure. Details will be updated as they become available."
},
{
"lang": "es",
"value": "M\u00faltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en Sun Secure Global Desktop (SSGD, tambi\u00e9n conocido como Tarantella) anterior a 4.20.983 permite a un atacante remoto inyectar secuencias de comandos web o HTML de su elecci\u00f3n a trav\u00e9s de vectores no especificados, posiblemente afecte a (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, o (7) test-cgi. NOTA: Esta informaci\u00f3n se basa sobre en una informaci\u00f3n b\u00e1sica. Los detalles ser\u00e1n puestos al d\u00eda cuando se encuentren disponibles."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": true,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sun:secure_global_desktop:3.42:*:enterprise:*:*:*:*:*",
"matchCriteriaId": "6DCA2744-A4A1-497D-A133-9D2B4E56BAF4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sun:secure_global_desktop:4.0:*:enterprise:*:*:*:*:*",
"matchCriteriaId": "D957237E-B27F-4830-94C9-4C2ACE107AD0"
}
]
}
]
}
],
"references": [
{
"url": "http://securityreason.com/securityalert/1623",
"source": "cve@mitre.org"
},
{
"url": "http://securitytracker.com/id?1016900",
"source": "cve@mitre.org"
},
{
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102650-1",
"source": "cve@mitre.org"
},
{
"url": "http://support.avaya.com/elmodocs2/security/ASA-2006-235.htm",
"source": "cve@mitre.org"
},
{
"url": "http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2555",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/archive/1/446566/100/0/threaded",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/20135",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/20276",
"source": "cve@mitre.org"
},
{
"url": "http://www.vupen.com/english/advisories/2006/3739",
"source": "cve@mitre.org"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29070",
"source": "cve@mitre.org"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29303",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue View Git Blame Copy Permalink