CVE-2005-2187

Name of the Vulnerable Software and Affected Versions: McAfee IntruShield Security Management System (affected versions not specified)

Description: The issue allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true. This can be achieved by manipulating specific parameters in certain JSP files, including setting the fullAccess or fullAccessRight parameter in "reports-column-center.jsp", or the fullAccess parameter in "SystemEvent.jsp".

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.