• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Cisco Unified MeetingPlace Web Conference Login Multiple Cross Site Scripting Vulnerabilities

Bugtraq ID:	26364
Class:	Input Validation Error
CVE:	CVE-2007-5581
Remote:	Yes
Local:	No
Published:	Nov 07 2007 12:00AM
Updated:	Nov 07 2007 06:05PM
Credit:	Joren McReynolds is credited with the discovery of these vulnerabilities.
Vulnerable:	Cisco Unified MeetingPlace Web Conference 5.3.447 Cisco Unified MeetingPlace Web Conference 6.0.170.0 Cisco Unified MeetingPlace Web Conference 5.4.70.0 Cisco Unified MeetingPlace Web Conference 5.3.447.4 Cisco Unified MeetingPlace Web Conference 5.3.333.0 Cisco Unified MeetingPlace Web Conference 5.3.104.3 Cisco Unified MeetingPlace Web Conference 5.3.104.0 Cisco Unified MeetingPlace Web Conference 4.3.0.246.5 Cisco Unified MeetingPlace Web Conference 4.3.0.246
Not Vulnerable:	Cisco Unified MeetingPlace Web Conference 6.0.244 1A Cisco Unified MeetingPlace Web Conference 5.4.156 2E