VDB
CVE-2006-4958
CVE-2006-4958
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.20.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, or (7) test-cgi. NOTE: This information is based upon a vague initial disclosure. Details will be updated as they become available.
EPSS 2.73% · 86.3th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
2.73%
86.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| sun | secure_global_desktop | 3.42, 4.0 |
| n/a | n/a | n/a |
Timeline
- Sep 23, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jun 20, 2023 EPSS Score
- Sep 4, 2023 EPSS Score
References
- 1016900 vdb
- sun-ssgd-unspecified-xss(29070) vdb
- 22037 third-party-advisory
- 20060921 [scip_Advisory 2555] Sun Secure Global Desktop prior 4.3 multiple remote vulnerabilities mailing-list
- 20276 vdb
- sun-ssgd-xss(29303) vdb
- http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2555 url
- http://support.avaya.com/elmodocs2/security/ASA-2006-235.htm url
- 102650 vendor-advisory
- 1623 third-party-advisory
- ADV-2006-3739 vdb
- 20135 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2006-4958 advisory