CVE-2007-6406

Multiple cross-site scripting (XSS) vulnerabilities in CA (formerly Computer Associates) eTrust Threat Management Console allow remote attackers to inject arbitrary web script or HTML via the IP Address field and other unspecified fields.
Configurations

Configuration 1 (hide)

cpe:2.3:a:broadcom:etrust_threat_management_console:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:40

Type Values Removed Values Added
References () http://securityreason.com/securityalert/3458 - () http://securityreason.com/securityalert/3458 -
References () http://securitytracker.com/id?1019047 - () http://securitytracker.com/id?1019047 -
References () http://www.securityfocus.com/archive/1/484607/100/0/threaded - () http://www.securityfocus.com/archive/1/484607/100/0/threaded -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/38868 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/38868 -

Information

Published : 2007-12-17 18:46

Updated : 2024-11-21 00:40


NVD link : CVE-2007-6406

Mitre link : CVE-2007-6406

CVE.ORG link : CVE-2007-6406


JSON object : View

Products Affected

broadcom

  • etrust_threat_management_console
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')