CVE-2015-7242

2016-01-12T14:59:05
ID CVE-2015-7242
Type cve
Reporter NVD
Modified 2016-01-15T13:21:06

Description

Cross-site scripting (XSS) vulnerability in the Push-Service-Mails feature in AVM FRITZ!OS before 6.30 allows remote attackers to inject arbitrary web script or HTML via the display name in the FROM field of an SIP INVITE message.