GCVE - cpe:2.3:a:airmagnet:enterprise:7.5:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:airmagnet:enterprise:7.5:*:*:*:*:*:*:*

part: a version: 7.5 update: *

Vendor	Airmagnet (`e154237d-eacb-5cf9-a45e-7a51d5f03bca`)
Product	Enterprise (`f4749dc6-d0f4-5b43-a631-ee2df3b0800b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-5746`	vulnerable	2026-06-08 04:49:21.188185	Details available The console in AirMagnet Enterprise before 7.5 build 6307 does not properly validate the Enterprise Server certificate, which allows remote attackers to read network traffic via a man-in-the-middle (MITM) attack, possibly related to the use of self-signed certificates. Published: 2006-11-06T18:00:00.000Z Updated: 2024-08-07T20:04:54.635Z Open on db.gcve.eu Reference links http://www.osvdb.org/29921 http://www.securityfocus.com/archive/1/449119/100/200/threaded http://www.securityfocus.com/bid/20602 http://www.securityfocus.com/archive/1/449739/100/100/threaded http://www.securityfocus.com/archive/1/451978/100/100/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-5742`	vulnerable	2026-06-08 04:49:21.184900	Details available The AirMagnet Enterprise console and Remote Sensor console (Laptop) in AirMagnet Enterprise before 7.5 build 6307 allows remote attackers to inject arbitrary web script or HTML from a certain embedded Internet Explorer object into an SSID template value, aka "Cross-Application Scripting (XAS)". Published: 2006-11-06T18:00:00.000Z Updated: 2024-08-07T20:04:54.605Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/449119/100/200/threaded http://www.securityfocus.com/bid/20602 http://www.securityfocus.com/archive/1/449739/100/100/threaded http://www.securityfocus.com/archive/1/451978/100/100/threaded http://secunia.com/advisories/22475	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-5741`	vulnerable	2026-06-08 04:49:21.184266	Details available Multiple cross-site scripting (XSS) vulnerabilities in AirMagnet Enterprise before 7.5 build 6307 allow remote attackers to inject arbitrary web script or HTML via (1) the 404 error page of the Smart Sensor Edge Sensor; (2) the user name for a failed logon, when displayed in the audit journals reviewing interface (/AirMagnetSensor/AMSensor.dll/XH) by the Smart Sensor Edge Sensor log viewer; and (3) an SSID of an AP, when displayed on an ACL page (/Amom/Amom.dll/BD) of the Enterprise Server Status Overview in the Enterprise Server Web interface. Published: 2006-11-06T18:00:00.000Z Updated: 2024-08-07T20:04:55.301Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/449119/100/200/threaded http://www.osvdb.org/29919 http://www.osvdb.org/29918 http://www.osvdb.org/29920 http://www.securityfocus.com/bid/20602	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.