Vulnerabilities > CVE-2005-3329 - Unspecified vulnerability in RSA Authentication Agent for web
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN rsa
exploit available
Summary
Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter in a GetPic operation.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 5 |
Exploit-Db
| description | RSA ACE Agent 5.x Image Cross-Site Scripting Vulnerability. CVE-2005-3329. Webapps exploit for cgi platform |
| id | EDB-ID:26398 |
| last seen | 2016-02-03 |
| modified | 2005-10-26 |
| published | 2005-10-26 |
| reporter | Bernhard Mueller |
| source | https://www.exploit-db.com/download/26398/ |
| title | RSA ACE Agent 5.x Image Cross-Site Scripting Vulnerability |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/65731/PR07-44.txt |
| id | PACKETSTORM:65731 |
| last seen | 2016-12-05 |
| published | 2008-04-24 |
| reporter | ProCheckUp |
| source | https://packetstormsecurity.com/files/65731/ProCheckUp-Security-Advisory-2007.44.html |
| title | ProCheckUp Security Advisory 2007.44 |
References
- http://marc.info/?l=bugtraq&m=113028928630700&w=2
- http://marc.info/?l=bugtraq&m=113028928630700&w=2
- http://marc.info/?l=full-disclosure&m=113027017101376&w=2
- http://marc.info/?l=full-disclosure&m=113027017101376&w=2
- http://marc.info/?l=full-disclosure&m=113027324906876&w=2
- http://marc.info/?l=full-disclosure&m=113027324906876&w=2
- http://secunia.com/advisories/17331
- http://secunia.com/advisories/17331
- http://securityreason.com/securityalert/116
- http://securityreason.com/securityalert/116
- http://securitytracker.com/id?1015105
- http://securitytracker.com/id?1015105
- http://www.securityfocus.com/bid/15206
- http://www.securityfocus.com/bid/15206
- http://www.vupen.com/english/advisories/2005/2203
- http://www.vupen.com/english/advisories/2005/2203