2 matches found
CVE-2007-1467
The CVE-2007-1467 entry describes multiple cross-site scripting (XSS) vulnerabilities affecting Cisco Secure Access Control Server and related Cisco products. The root issue is insufficient input filtering in the search form used by PreSearch.html and PreSearch.class, allowing remote attackers to...
CVE-2010-3048
Cisco Unified Personal Communicator 7.0 (1.13056) is affected by a denial-of-service vulnerability arising from failure to free allocated memory for received data and lack of validation after memory allocation succeeds. The issue is triggered remotely over the network and results in a DoS conditi...