2 matches found
CVE-2013-5482
Cisco Prime LAN Management Solution LMS does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting XFS" issue, aka Bug ID CSCug77823...
CVE-2013-5482
Cisco Prime LMS is affected by a cross-frame scripting (XFS) vulnerability caused by improper handling of IFRAMEs, due to insufficient input filtering. The issue enables a remote attacker to expose users to clickjacking and related client-side attacks via a crafted page. Remediation is available ...