Vulnerability Description
Cross-site scripting (XSS) vulnerability in Groupmax World Wide Web, World Wide Web Desktop, World Wide Web for Scheduler, and Desktop for Scheduler, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hitachi | Groupmax World Wide Web | 2 |
| Hitachi | Groupmax World Wide Web Desktop | All versions |
| Hitachi | Groupmax World Wide Web Desktop Scheduler | 5 |
| Hitachi | Groupmax World Wide Web Scheduler | 2 |
References
- http://secunia.com/advisories/19483Vendor Advisory
- http://www.hitachi-support.com/security_e/vuls_e/HS06-005_e/index-e.htmlPatch
- http://www.osvdb.org/24295
- http://www.securityfocus.com/bid/17337
- http://www.vupen.com/english/advisories/2006/1180
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25574
- http://secunia.com/advisories/19483Vendor Advisory
- http://www.hitachi-support.com/security_e/vuls_e/HS06-005_e/index-e.htmlPatch
- http://www.osvdb.org/24295
- http://www.securityfocus.com/bid/17337
- http://www.vupen.com/english/advisories/2006/1180
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25574
FAQ
What is CVE-2006-1574?
CVE-2006-1574 is a vulnerability with a CVSS score of 5.8 (MEDIUM). Cross-site scripting (XSS) vulnerability in Groupmax World Wide Web, World Wide Web Desktop, World Wide Web for Scheduler, and Desktop for Scheduler, allows remote attackers to inject arbitrary web sc...
How severe is CVE-2006-1574?
CVE-2006-1574 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1574?
Check the references section above for vendor advisories and patch information. Affected products include: Hitachi Groupmax World Wide Web, Hitachi Groupmax World Wide Web Desktop, Hitachi Groupmax World Wide Web Desktop Scheduler, Hitachi Groupmax World Wide Web Scheduler.