2 matches found
CVE-2009-0470
Multiple cross-site scripting XSS vulnerabilities in the HTTP server in Cisco IOS 12.423 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to the default URI under 1 level/15/exec/-/ or 2 exec/, a different vulnerability than CVE-2008-3821...
CVE-2009-0470
CVE-2009-0470 concerns Cisco IOS 12.4(23) with cross-site scripting (XSS) vulnerabilities in the HTTP server. The flaw allows remote attackers to inject arbitrary web script or HTML via PATH_INFO to the default URI under (1) level/15/exec/-/ and (2) exec/. This is a separate issue from CVE-2008-3...