TUCoPS :: Cisco :: va2707.htm

Cisco Unified MeetingPlace Web Conferencing Stored XSS
Cisco Unified MeetingPlace Web Conferencing Stored Cross Site Scripting Vulnerability
Cisco Unified MeetingPlace Web Conferencing Stored Cross Site Scripting Vulnerability


Title: 	Cisco Unified MeetingPlace Web Conferencing Stored Cross Site Scripting Vulnerability=0D
=0D
=0D
CVE Identifier: N/A=0D
____________=0D
=0D
Credit: =0D
Security Assurance Team of the National Australia Bank.=0D
=0D
The vendor was advised of this vulnerability prior to its public release.  National Australia Bank adheres to the =93Guidelines for Security Vulnerability Reporting and Response V2.0=94 document when issuing Security Advisories.  =0D
=0D
Class: 	Stored Cross Site Scripting=0D
____________=0D
=0D
Remote:	Yes=0D
____________=0D
=0D
Local:	No=0D
____________=0D
=0D
=0D
Vulnerable: =0D
Cisco Unified Meeting Place 6.0 and possibly 7.0 =96 other versions may also be vulnerable.=0D
____________  =0D
=0D
Not Vulnerable:	=0D
____________=0D
=0D
Vendor:	Cisco=0D
____________=0D
=0D
Discussion:=0D
Cisco Unified Meeting Place is a suite of products used for remote voice, video and web conferencing.  The Cisco Unified Meeting Place web interface allows users to schedule and attend conferences.=0D
=0D
Each user has the ability to modify their own account settings such as their name, telephone extension, email address etc. National Australia Bank=92s Security Assurance Team have identified a stored cross site scripting vulnerability that could be exploited by a malicious user to execute code within another user's browser when they view a meeting created by the malicious user.=0D
=0D
____________=0D
=0D
Exploit:=0D
The =93E-mail Address=94 field of this profile page is vulnerable to stored cross site scripting attacks. =0D
=0D
If a user enters the following in the email field, the code within the script tags will be executed whenever that user=92s profile data is viewed by other users, including when viewing the details of a meeting created by this user: =0D
">=0D
=0D
Solution: =0D
No workaround available.=0D
=0D
This vulnerability is fixed in Cisco Unified MeetingPlace Web Conferencing software version 6.0(517.0) also known as Maintenance Release 4 (MR4) for the 6.0 release, and version 7.0(2) also known as Maintenance Release 1 (MR1) for the 7.0 release. =0D
=0D
____________=0D
=0D
References:  =0D
=0D
Vendor Homepage: =0D
http://www.cisco.com=0D 
=0D
=0D
=0D
=0D

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH