CVE-2005-3329 – RSA ACE Agent 5.x - Image Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-3329
Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter in a GetPic operation. • https://www.exploit-db.com/exploits/26398 http://marc.info/?l=bugtraq&m=113028928630700&w=2 http://marc.info/?l=full-disclosure&m=113027017101376&w=2 http://marc.info/?l=full-disclosure&m=113027324906876&w=2 http://secunia.com/advisories/17331 http://securityreason.com/securityalert/116 http://securitytracker.com/id?1015105 http://www.securityfocus.com/bid/15206 http://www.vupen.com/english/advisories/2005/2203 •
CVE-2005-1118 – RSA Security RSA Authentication Agent For Web 5.2 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-1118
Cross-site scripting (XSS) vulnerability in IISWebAgentIF.dll in the RSA Authentication Agent for Web 5.2 allows remote attackers to inject arbitrary web script or HTML via the postdata parameter. • https://www.exploit-db.com/exploits/25421 http://secunia.com/advisories/14954 http://securitytracker.com/id?1013724 http://www.kb.cert.org/vuls/id/366372 http://www.oliverkarow.de/research/rsaxss.txt http://www.securityfocus.com/bid/13168 https://exchange.xforce.ibmcloud.com/vulnerabilities/20098 •