Lucene search
RootSSV:61519HistoryFeb 21, 2014 - 12:00 a.m.
Cisco Unified Communications Manager IPMA跨站脚本漏洞
2014-02-2100:00:00
Root
www.seebug.org
12
EPSS
0.002
Percentile
60.1%
Bugtraq ID:65641
CVE ID:CVE-2014-0735
Cisco Unified Communications Manager是一款Cisco IP电话解决方案中的呼叫处理组件。
Cisco Unified Communications Manager处理相关IPMA的输入时缺少充分过滤,远程攻击者可以利用漏洞构建恶意URI,诱使用户解析,可获得敏感Cookie,劫持会话或在客户端上进行恶意操作。
0
Cisco Unified Communications Manager 10.0(1.10000.3)
厂商补丁:
Cisco
Cisco Unified Communications Manager 10.5(0.98000.216)或10.5(0.98000.377)已经修复该漏洞,建议用户下载更新:
http://www.cisco.com/en/US/products/sw/voicesw/ps556/index.html
Related
prion
prion
Cross site scripting
2014-02-20 05:18:00
cvelist
cvelist
CVE-2014-0735
2014-02-20 02:00:00
cve
cve
CVE-2014-0735
2014-02-20 05:18:04
cisco
cisco
nvd
nvd
CVE-2014-0735
2014-02-20 05:18:04