CVE-2011-2545
CVE-2011-2545 is a cross-site scripting (XSS) vulnerability in the SIP INVITE FROM field handling of Cisco SPA 8000/8800 (before 6.1.11), SPA2102 and SPA3102 (before 5.2.13), and SPA 500 series IP phones (before 7.4.9). Root cause: lack of input sanitization in the SIP INVITE FROM field. Impact: ...