CVE

Id
28904  
CVE No.
CVE-2007-5547  
Status
Candidate  
Description
Cross-site scripting (XSS) vulnerability in Cisco IOS allows remote attackers to inject arbitrary web script or HTML, and execute IOS commands, via unspecified vectors, aka PSIRT-2022590358. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.  
Phase
Assigned (20071018)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
303003 28904 CVE-2007-5547 MISC:http://www.irmplc.com/index.php/111-Vendor-Alerts  View
303004 28904 CVE-2007-5547 OSVDB:43742  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
54106 JVNDB-2007-002798 Cisco IOS の Command EXEC における重要な情報を取得される脆弱性 Cisco IOS の Command EXEC には、コマンドの制限を回避される、および重要な情報を取得される脆弱性が存在します。 CVE-2007-5549 28904 2.1 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002798.html  View