CVE

Id
24824  
CVE No.
CVE-2007-1467  
Status
Candidate  
Description
Multiple cross-site scripting (XSS) vulnerabilities in (1) PreSearch.html and (2) PreSearch.class in Cisco Secure Access Control Server (ACS), VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator, Unified Video Advantage, Unified Videoconferencing 35xx products, Unified Videoconferencing Manager, WAN Manager, Security Device Manager, Network Analysis Module (NAM), CiscoWorks and related products, Wireless LAN Solution Engine (WLSE), 2006 Wireless LAN Controllers (WLC), and Wireless Control System (WCS) allow remote attackers to inject arbitrary web script or HTML via the text field of the search form.  
Phase
Assigned (20070316)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
245898 24824 CVE-2007-1467 BUGTRAQ:20070315 Re: XSS vulnerability in the online help system of several Cisco products  View
245899 24824 CVE-2007-1467 URL:http://www.securityfocus.com/archive/1/archive/1/462944/100/0/threaded  View
245900 24824 CVE-2007-1467 BUGTRAQ:20070315 XSS vulnerability in the online help system of several Cisco products  View
245901 24824 CVE-2007-1467 URL:http://www.securityfocus.com/archive/1/archive/1/462932/100/0/threaded  View
245902 24824 CVE-2007-1467 CISCO:20070315 Cross-Site Scripting Vulnerability in Online Help System  View
245903 24824 CVE-2007-1467 URL:http://www.cisco.com/en/US/products/products_security_response09186a0080803fe4.html  View
245904 24824 CVE-2007-1467 BID:22982  View
245905 24824 CVE-2007-1467 URL:http://www.securityfocus.com/bid/22982  View
245906 24824 CVE-2007-1467 VUPEN:ADV-2007-0973  View
245907 24824 CVE-2007-1467 URL:http://www.vupen.com/english/advisories/2007/0973  View
245908 24824 CVE-2007-1467 SECTRACK:1017778  View
245909 24824 CVE-2007-1467 URL:http://www.securitytracker.com/id?1017778  View
245910 24824 CVE-2007-1467 SECUNIA:24499  View
245911 24824 CVE-2007-1467 URL:http://secunia.com/advisories/24499  View
245912 24824 CVE-2007-1467 SREASON:2437  View
245913 24824 CVE-2007-1467 URL:http://securityreason.com/securityalert/2437  View
245914 24824 CVE-2007-1467 XF:cisco-presearch-xss(33024)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
56557 JVNDB-2007-005249 Absolute Image Gallery の gallery.asp における SQL インジェクションの脆弱性 Absolute Image Gallery の gallery.asp には、SQL インジェクションの脆弱性が存在します。 CVE-2007-1469 24824 7.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005249.html  View