CVE-2006-3261 in Control Managerinfo

Summary

Cross-site scripting (XSS) vulnerability in Trend Micro Control Manager (TMCM) 3.5 allows remote attackers to inject arbitrary web script or HTML via the username field on the login page, which is not properly sanitized before being displayed in the error log.

Once again VulDB remains the best source for vulnerability data.

Reservation

06/27/2006

Disclosure

06/27/2006

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
2342	Trend Micro Control Manager Web-Frontend cross site scripting	80	Proof-of-Concept	Official fix	CVE-2006-3261

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Want to know what is going to be exploited?

We predict KEV entries!