Cisco Unified Contact Center Express (CCX) Arbitrary Script Injection Vulnerability

Bugtraq ID: 35705
Class: Input Validation Error
CVE: CVE-2009-2048
Remote: Yes
Local: No
Published: Jul 15 2009 12:00AM
Updated: Jul 15 2009 06:26PM
Credit: National Australia Bank's Security Assurance team
Vulnerable: Cisco Unified IP Interactive Voice Response 7.x
Cisco Unified IP Interactive Voice Response 6.x
Cisco Unified IP Interactive Voice Response 5.x
Cisco Unified IP Interactive Voice Response 4.x
Cisco Unified IP Interactive Voice Response 3.x
Cisco Unified IP Contact Center Express 7.x
Cisco Unified IP Contact Center Express 6.x
Cisco Unified IP Contact Center Express 5.x
Cisco Unified IP Contact Center Express 3.x
Cisco Unified Contact Center Express (CCX) 7.x
Cisco Unified Contact Center Express (CCX) 6.x
Cisco Unified Contact Center Express (CCX) 5.x
Cisco Unified Contact Center Express (CCX) 4.x
Cisco Unified Contact Center Express 0
Cisco IP Queue Manager 3.x
Cisco IP Queue Manager
Cisco IP Contact Center Express
Cisco Customer Response Solution (CRS) 7.x
Cisco Customer Response Solution (CRS) 6.x
Cisco Customer Response Solution (CRS) 5.x
Cisco Customer Response Solution (CRS) 4.x
Cisco Customer Response Solution (CRS) 3.x
Cisco Customer Response Applications 3.x
Not Vulnerable: Cisco Customer Response Solution (CRS) 7.0(1) SR2


 

Privacy Statement
Copyright 2010, SecurityFocus