Vulnerabilities > CVE-2005-2186 - Cross-Site Scripting vulnerability in IntruShield Security Management System
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE local
mcafee
Summary
Multiple cross-site scripting (XSS) vulnerabilities in McAfee IntruShield Security Management System allow remote authenticated users to inject arbitrary web script or HTML via the (1) thirdMenuName or (2) resourceName parameter to SystemEvent.jsp.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 1 |