CVE-2006-3101

N/A Unknown

Published: June 21, 2006 Modified: April 16, 2026

Description

Cross-site scripting (XSS) vulnerability in LogonProxy.cgi in Cisco Secure ACS for UNIX 2.3 allows remote attackers to inject arbitrary web script or HTML via the (1) error, (2) SSL, and (3) Ok parameters.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/20699

Source: cve@mitre.org

Patch Vendor Advisory

http://securityreason.com/securityalert/1116

Source: cve@mitre.org

http://securitytracker.com/id?1016317

Source: cve@mitre.org

Exploit Patch

http://www.cisco.com/en/US/products/sw/secursw/ps4911/tsd_products_security_response09186a00806b8bdb.html

Source: cve@mitre.org

Patch

http://www.osvdb.org/26531

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/437441/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/437480/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/18449

Source: cve@mitre.org

Exploit Patch

http://www.vupen.com/english/advisories/2006/2384

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/27166

Source: cve@mitre.org

http://secunia.com/advisories/20699