CVE-2007-6704

CVE-2007-6704 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5.2 and 6.0 through 6.0.1, when pre-logon sequences are enabled, allow remote attackers to inject arbitrary web script or HTML via the query string to (1) my.activation.php3 and (2) my.logon.php3.

Learn more about our Cis Benchmark Audit For F5.