CVE-2006-2353

Published: May 15, 2006Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

NmConsole/DeviceSelection.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to redirect users to other websites via the (1) sCancelURL and possibly (2) sRedirectUrl parameters.

Affected (2)

Products: Ipswitch: Whatsup Professional

Ipswitch

1 product

Whatsup Professional

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ipswitch Whatsup Professional	Version 2006
Ipswitch Whatsup Professional	Version 2006_premium

Related CWEs

CWE-264

References (12)

http://secunia.com/advisories/20075

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/897

Source: cve@mitre.org

http://www.osvdb.org/25473

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/433808

Source: cve@mitre.org

Vendor Advisory

http://www.vupen.com/english/advisories/2006/1787

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/26502

Source: cve@mitre.org

http://secunia.com/advisories/20075