Lucene search
SecurityvulnsSECURITYVULNS:DOC:19847HistoryMay 14, 2008 - 12:00 a.m.
Cisco BBSM Captive Portal Cross-site Scripting
2008-05-1400:00:00
vulners.com
20
Title: Cisco BBSM Captive Portal Cross-site Scripting
Vendor: Cisco Systems
Vendor URL: www.cisco.com
Vendor Response: Vendor has been notified and has since addressed the issue in the latest software release.
Description:
A non-persistent XSS vulnerability is present within the AccessCodeStart.asp page. A
malicious user may leverage this to possibly gain access client information in captive
portal/hotspot locations using this software.
Example:
Patch Information:
Download BBSMPatch5332.zip
CVE: CVE-2008-2165
Credit:
Brad Antoniewicz
[email protected]
Related
prion
prion
Cross site scripting
2008-05-16 12:54:00
seebug
seebug
Cisco BBSM AccesCodeStart.asp文件跨站脚本漏洞
2008-05-17 00:00:00
exploitdb
exploitdb
packetstorm
packetstorm
ciscobbsm-xss.txt
2008-05-13 00:00:00
securityvulns
securityvulns
Cisco Building Broadband Service Manager Captive Portal crossite scripting
2008-05-14 00:00:00
cve
cve
CVE-2008-2165
2008-05-16 12:54:00
cisco
cisco
Cisco Building Broadband Service Manager Cross-Site Scripting Vulnerability
2008-05-14 17:52:02
Related for SECURITYVULNS:DOC:19847