VYPR

FirePass 1000 SSL VPN

by F5, Inc.

CVEs (5)

  • CVE-2008-2637Jun 10, 2008
    F5, Inc.
    FirePass 1000 SSL VPN
    risk 0.03cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass SSL VPN 6.0.2 hotfix 3, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via quotes in (1) the css_exceptions parameter in vdesk/admincon/webyfiers.php and (2) the…

  • CVE-2009-2119Jun 18, 2009
    F5, Inc.
    FirePass 1000 SSL VPN
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in the login interface (my.logon.php3) in F5 FirePass SSL VPN 5.5 through 5.5.2 and 6.0 through 6.0.3 allows remote attackers to inject arbitrary web script or HTML via a base64-encoded xcho parameter.

  • CVE-2007-3097Jun 6, 2007
    F5, Inc.
    FirePass 1000 SSL VPN
    risk 0.00cvss epss 0.02

    my.activation.php3 in F5 FirePass 4100 SSL VPN allows remote attackers to execute arbitrary shell commands via shell metacharacters in the username parameter.

  • CVE-2007-0186Jan 12, 2007
    F5, Inc.
    FirePass 1000 SSL VPN
    risk 0.00cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass SSL VPN allow remote attackers to inject arbitrary web script or HTML via (1) the xcho parameter to my.logon.php3; the (2) topblue, (3) midblue, (4) wtopblue, and certain other Custom color parameters in a per…

  • CVE-2006-5416Oct 20, 2006
    F5, Inc.
    FirePass 1000 SSL VPN
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in my.acctab.php3 in F5 Networks FirePass 1000 SSL VPN 5.5, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the sid parameter.