Cisco Unity Express CVE-2013-1114 Multiple Unspecified Cross Site Scripting Vulnerabilities

Cisco Unity Express is prone to multiple unspecified cross-site scripting vulnerabilities.

An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.

These issues are being tracked by Cisco Bug ID CSCud87527.


Privacy Statement
Copyright 2010, SecurityFocus