ByteOS Network

CVE Vulnerability Details :

CVE-2006-0254

PUBLISHED

More Info Official Page

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-18 Jan, 2006 | 02:00

Updated At-07 Aug, 2024 | 16:25

▼CVE Numbering Authority (CNA)

Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://rhn.redhat.com/errata/RHSA-2008-0630.html	vendor-advisory x_refsource_REDHAT
http://secunia.com/advisories/31493	third-party-advisory x_refsource_SECUNIA
http://www.oliverkarow.de/research/geronimo_css.txt	x_refsource_MISC
https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Create	x_refsource_CONFIRM
http://www.securityfocus.com/bid/16260	vdb-entry x_refsource_BID
http://www.vupen.com/english/advisories/2006/0217	vdb-entry x_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/24159	vdb-entry x_refsource_XF
https://exchange.xforce.ibmcloud.com/vulnerabilities/24158	vdb-entry x_refsource_XF
http://www.securityfocus.com/archive/1/421996/100/0/threaded	mailing-list x_refsource_BUGTRAQ
http://www.redhat.com/support/errata/RHSA-2008-0261.html	vendor-advisory x_refsource_REDHAT
http://issues.apache.org/jira/browse/GERONIMO-1474	x_refsource_MISC
http://secunia.com/advisories/18485	third-party-advisory x_refsource_SECUNIA

Hyperlink: http://rhn.redhat.com/errata/RHSA-2008-0630.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://secunia.com/advisories/31493

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.oliverkarow.de/research/geronimo_css.txt

Resource:

x_refsource_MISC

Hyperlink: https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Create

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securityfocus.com/bid/16260

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.vupen.com/english/advisories/2006/0217

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/24159

Resource:

vdb-entry

x_refsource_XF

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/24158

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://www.securityfocus.com/archive/1/421996/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0261.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://issues.apache.org/jira/browse/GERONIMO-1474

Resource:

x_refsource_MISC

Hyperlink: http://secunia.com/advisories/18485

Resource:

third-party-advisory

x_refsource_SECUNIA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://rhn.redhat.com/errata/RHSA-2008-0630.html	vendor-advisory x_refsource_REDHAT x_transferred
http://secunia.com/advisories/31493	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.oliverkarow.de/research/geronimo_css.txt	x_refsource_MISC x_transferred
https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Create	x_refsource_CONFIRM x_transferred
http://www.securityfocus.com/bid/16260	vdb-entry x_refsource_BID x_transferred
http://www.vupen.com/english/advisories/2006/0217	vdb-entry x_refsource_VUPEN x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/24159	vdb-entry x_refsource_XF x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/24158	vdb-entry x_refsource_XF x_transferred
http://www.securityfocus.com/archive/1/421996/100/0/threaded	mailing-list x_refsource_BUGTRAQ x_transferred
http://www.redhat.com/support/errata/RHSA-2008-0261.html	vendor-advisory x_refsource_REDHAT x_transferred
http://issues.apache.org/jira/browse/GERONIMO-1474	x_refsource_MISC x_transferred
http://secunia.com/advisories/18485	third-party-advisory x_refsource_SECUNIA x_transferred

Hyperlink: http://rhn.redhat.com/errata/RHSA-2008-0630.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://secunia.com/advisories/31493

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.oliverkarow.de/research/geronimo_css.txt

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Create

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.securityfocus.com/bid/16260

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2006/0217

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/24159

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/24158

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/421996/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0261.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://issues.apache.org/jira/browse/GERONIMO-1474

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://secunia.com/advisories/18485

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References