Multiple Cisco Products Online Help Cross Site Scripting Vulnerability
BID:22982
Info
Multiple Cisco Products Online Help Cross Site Scripting Vulnerability
| Bugtraq ID: | 22982 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-1467 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 15 2007 12:00AM |
| Updated: | May 12 2015 07:33PM |
| Credit: | Erwin Paternotte from Fox-IT and Cassio Goldschmidt are credited with the discovery of this issue. |
| Vulnerable: |
Cisco Wireless Lan Solution Engine Cisco Wireless Control System 0 Cisco WAN Manager Cisco VPN Client for Windows 4.8.1 Cisco VPN Client for Windows 4.8 Cisco VPN Client for Windows 4.7 .0533 Cisco VPN Client for Windows 4.0.2 C Cisco VPN Client for Windows 4.0.2 A Cisco VPN Client for Windows 3.6.1 Cisco VPN Client for Windows 3.6 (Rel) Cisco VPN Client for Windows 3.6 Cisco VPN Client for Windows 3.5.4 Cisco VPN Client for Windows 3.5.2 B Cisco VPN Client for Windows 3.5.2 Cisco VPN Client for Windows 3.5.1 C Cisco VPN Client for Windows 3.5.1 Cisco VPN Client for Windows 3.1 Cisco VPN Client for Windows 3.0.5 Cisco VPN Client for Windows 3.0 Cisco VPN Client for Windows 2.0 Cisco VPN Client for Windows 4.7 Cisco VPN Client for Windows 4.6 Cisco VPN Client for Solaris 4.0.2 C Cisco VPN Client for Solaris 4.0.2 A Cisco VPN Client for Solaris 3.6.1 Cisco VPN Client for Solaris 3.6 Cisco VPN Client for Solaris 3.5.4 Cisco VPN Client for Solaris 3.5.2 B Cisco VPN Client for Solaris 3.5.2 Cisco VPN Client for Solaris 3.5.1 Cisco VPN Client for Mac OS X 4.0.2 C Cisco VPN Client for Mac OS X 4.0.2 A Cisco VPN Client for Mac OS X 3.6.1 Cisco VPN Client for Mac OS X 3.6 Cisco VPN Client for Mac OS X 3.5.4 Cisco VPN Client for Mac OS X 3.5.2 B Cisco VPN Client for Mac OS X 3.5.2 Cisco VPN Client for Mac OS X 3.5.1 Cisco VPN Client for Linux 3.6.1 Cisco VPN Client for Linux 3.6 Cisco VPN Client for Linux 3.5.4 Cisco VPN Client for Linux 3.5.2 B Cisco VPN Client for Linux 3.5.2 Cisco VPN Client for Linux 3.5.1 Cisco VPN Client 0 Cisco VPN 3000 Concentrator 4.7.2 G Cisco VPN 3000 Concentrator 4.7.1 F Cisco VPN 3000 Concentrator 4.7.1 Cisco VPN 3000 Concentrator 4.7 Cisco VPN 3000 Concentrator 4.1.7 M Cisco VPN 3000 Concentrator 4.1.5 .B Cisco VPN 3000 Concentrator 4.1 .x Cisco VPN 3000 Concentrator 4.0.5 .B Cisco VPN 3000 Concentrator 4.0.1 Cisco VPN 3000 Concentrator 4.0 .x Cisco VPN 3000 Concentrator 4.0 Cisco VPN 3000 Concentrator 3.6.7 D Cisco VPN 3000 Concentrator 3.6.7 Cisco VPN 3000 Concentrator 3.6.1 Cisco VPN 3000 Concentrator 3.6 Cisco VPN 3000 Concentrator 3.5.5 Cisco VPN 3000 Concentrator 3.5.4 Cisco VPN 3000 Concentrator 3.5.3 Cisco VPN 3000 Concentrator 3.5.2 Cisco VPN 3000 Concentrator 3.5.1 Cisco VPN 3000 Concentrator 3.5 (Rel) Cisco VPN 3000 Concentrator 3.1.4 Cisco VPN 3000 Concentrator 3.1.2 Cisco VPN 3000 Concentrator 3.1.1 Cisco VPN 3000 Concentrator 3.1 (Rel) Cisco VPN 3000 Concentrator 3.1 Cisco VPN 3000 Concentrator 3.0.4 Cisco VPN 3000 Concentrator 3.0.3 (B) Cisco VPN 3000 Concentrator 3.0.3 (A) Cisco VPN 3000 Concentrator 3.0 Cisco VPN 3000 Concentrator 2.5.2 (F) Cisco VPN 3000 Concentrator 2.5.2 (D) Cisco VPN 3000 Concentrator 2.5.2 (C) Cisco VPN 3000 Concentrator 2.5.2 (B) Cisco VPN 3000 Concentrator 2.5.2 (A) Cisco VPN 3000 Concentrator 2.0 Cisco VPN 3000 Concentrator 4.1.7.B Cisco VPN 3000 Concentrator 4.1.7.A Cisco Unified Videoconferencing 0 Cisco Unified Video Advantage 0 Cisco Unified Personal Communicator 0 Cisco Unified MeetingPlace Express 0 Cisco Unified MeetingPlace 0 Cisco Security Device Manager 0 Cisco Secure ACS Solution Engine 4.1 Cisco Secure ACS for Windows 4.1 Cisco Network Analysis Module 0 Cisco MeetingPlace Cisco IP Communicator 0 Cisco CiscoWorks Windows/WUG 0 Cisco CiscoWorks Windows 0 Cisco CiscoWorks Windows Cisco CiscoWorks VPN/Security Management Solution Cisco CiscoWorks Monitoring Center for Security 2.1 Cisco CiscoWorks Monitoring Center for Security 2.0 Cisco CiscoWorks Monitoring Center for Security 1.1 Cisco CiscoWorks Monitoring Center for Security 1.0 Cisco CiscoWorks Management Center for IDS Sensors 2.1 Cisco CiscoWorks Management Center for IDS Sensors 2.0 Cisco CiscoWorks Management Center for IDS Sensors 1.2 Cisco CiscoWorks Management Center for IDS Sensors 1.1 Cisco CiscoWorks Management Center for IDS Sensors 1.0 Cisco CiscoWorks LMS 1.3 Cisco CiscoWorks Common Services 2.2 Cisco CiscoWorks Common Management Foundation 2.2 Cisco CiscoWorks Common Management Foundation 2.1 Cisco CiscoWorks Common Management Foundation 2.0 Cisco CiscoWorks Common Management Foundation 0 Cisco CiscoWorks CD1 5th Edition Cisco CiscoWorks CD1 4th Edition Cisco CiscoWorks CD1 3rd Edition Cisco CiscoWorks CD1 2nd Edition Cisco CiscoWorks CD1 1st Edition Cisco CiscoWorks Access Control List Manager 1.6 Cisco CiscoWorks Access Control List Manager 1.5 Cisco CiscoWorks 1105 Wireless LAN Solution Engine Cisco CiscoWorks 1105 Hosting Solution Engine Cisco CiscoWorks Cisco 2006 Wireless LAN Controller (WLC) 0 |
| Not Vulnerable: | |
Discussion
Multiple Cisco Products Online Help Cross Site Scripting Vulnerability
Multiple Cisco products are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input.
An attacker may leverage this issue by enticing a victim into following a maliciously crafted URI.
Attackers may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
This issue is being tracked by Cisco IDs: CSCsh91761, CSCsh52300, CSCsh91884, CSCsi12435, CSCsh91901, CSCsi10405, CSCsh91953, CSCsh93070, CSCsh93854, CSCek71039, CSCsh95009, CSCsi10818, CSCsi10674, CSCsi10982, CSCsi13743, CSCsi13763.
Multiple Cisco products are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input.
An attacker may leverage this issue by enticing a victim into following a maliciously crafted URI.
Attackers may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
This issue is being tracked by Cisco IDs: CSCsh91761, CSCsh52300, CSCsh91884, CSCsi12435, CSCsh91901, CSCsi10405, CSCsh91953, CSCsh93070, CSCsh93854, CSCek71039, CSCsh95009, CSCsi10818, CSCsi10674, CSCsi10982, CSCsi13743, CSCsi13763.
Exploit / POC
Multiple Cisco Products Online Help Cross Site Scripting Vulnerability
Attackers can exploit this issue by enticing an unsuspecting victim into following a malicious URI.
Attackers can exploit this issue by enticing an unsuspecting victim into following a malicious URI.
Solution / Fix
Multiple Cisco Products Online Help Cross Site Scripting Vulnerability
Solution:
The vendor has released an advisory addressing this issue for affected products. Please see the references for more information.
Solution:
The vendor has released an advisory addressing this issue for affected products. Please see the references for more information.
References
Multiple Cisco Products Online Help Cross Site Scripting Vulnerability
References:
References: