Cisco Application and Content Networking System 5.5(9) URL Handler cross site scripting
 | Start Running App Marketing Campaigns That Increase Revenue & Engagement From our sponsors |
| scip AG VulDB EN |
| Vulnerabilities of scip VulDB |
Cisco Application and Content Networking System 5.5(9) URL Handler cross site scripting
6/11/2015 7:00:00 PM
General
scipID: 75869
Affected: Cisco Application and Content Networking System 5.5(9)
Published: 06/12/2015
Risk: problematic
Created: 06/14/2015
Entry: 67.6% complete
Summary
A vulnerability was found in Cisco Application and Content Networking System 5.5(9). It has been rated as problematic. This issue affects an unknown function of the component URL Handler. The manipulation with an unknown input leads to a cross site scripting vulnerability. Impacted is integrity.
The weakness was shared 06/12/2015 as CSCuu70650 as advisory (Website). The identification of this vulnerability is CVE-2015-0774. The exploitation is known to be easy. The attack may be initiated remotely. Neither technical details nor an exploit are publicly available.
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
CVSS
Base Score: 4.0 (CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N) [?]
Temp Score: 4.0 (CVSS2#E:ND/RL:ND/RC:ND) [?]
CPE
Exploiting
Class: Cross site scripting
Local: No
Remote: Yes
Availability: No
Countermeasures
Recommended: no mitigation known
0-Day Time: 0 days since found
Timeline
06/12/2015 | Advisory disclosed
06/14/2015 | VulDB entry created
06/14/2015 | VulDB entry updated
Sources
Advisory: CSCuu70650
CVE: CVE-2015-0774 (mitre.org) (nvd.nist.org) (cvedetails.com)
You are receiving this email because you subscribed to this feed at feedmyinbox.com
If you no longer wish to receive these emails, you can unsubscribe from this feed, or manage all your subscriptions