CVE-2006-4958
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple cross-site scripting (XSS) vulnerabilities in Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.20.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, or (7) test-cgi. NOTE: This information is based upon a vague initial disclosure. Details will be updated as they become available.
Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en Sun Secure Global Desktop (SSGD, también conocido como Tarantella) anterior a 4.20.983 permite a un atacante remoto inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados, posiblemente afecte a (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, o (7) test-cgi. NOTA: Esta información se basa sobre en una información básica. Los detalles serán puestos al día cuando se encuentren disponibles.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-09-22 CVE Reserved
- 2006-09-23 CVE Published
- 2024-04-04 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (12)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/22037 | Third Party Advisory | |
| http://securityreason.com/securityalert/1623 | Third Party Advisory | |
| http://securitytracker.com/id?1016900 | Vdb Entry | |
| http://support.avaya.com/elmodocs2/security/ASA-2006-235.htm | X_refsource_confirm | |
| http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2555 | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/446566/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/20135 | Vdb Entry | |
| http://www.securityfocus.com/bid/20276 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2006/3739 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/29070 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/29303 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://sunsolve.sun.com/search/document.do?assetkey=1-26-102650-1 | 2018-10-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Sun Search vendor "Sun" | Secure Global Desktop Search vendor "Sun" for product "Secure Global Desktop" | 3.42 Search vendor "Sun" for product "Secure Global Desktop" and version "3.42" | enterprise |
Affected
| ||||||
| Sun Search vendor "Sun" | Secure Global Desktop Search vendor "Sun" for product "Secure Global Desktop" | 4.0 Search vendor "Sun" for product "Secure Global Desktop" and version "4.0" | enterprise |
Affected
| ||||||