Unrated severityNVD Advisory· Published Nov 6, 2006· Updated Apr 23, 2026

CVE-2006-5741

Description

Multiple cross-site scripting (XSS) vulnerabilities in AirMagnet Enterprise before 7.5 build 6307 allow remote attackers to inject arbitrary web script or HTML via (1) the 404 error page of the Smart Sensor Edge Sensor; (2) the user name for a failed logon, when displayed in the audit journals reviewing interface (/AirMagnetSensor/AMSensor.dll/XH) by the Smart Sensor Edge Sensor log viewer; and (3) an SSID of an AP, when displayed on an ACL page (/Amom/Amom.dll/BD) of the Enterprise Server Status Overview in the Enterprise Server Web interface.

Affected products

Airmagnet/Enterprise
cpe:2.3:a:airmagnet:enterprise:7.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/22475nvd
www.osvdb.org/29918nvd
www.osvdb.org/29919nvd
www.osvdb.org/29920nvd
www.securityfocus.com/archive/1/449119/100/200/threadednvd
www.securityfocus.com/archive/1/449739/100/100/threadednvd
www.securityfocus.com/archive/1/451978/100/100/threadednvd
www.securityfocus.com/bid/20602nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000