Yealink VoIP Phones '/servlet' Cross Site Scripting Vulnerability

Bugtraq ID: 68023
Class: Input Validation Error
CVE: CVE-2014-3428
Remote: Yes
Local: No
Published: Jun 12 2014 12:00AM
Updated: Jun 12 2014 12:00AM
Credit: Jesus Oquendo
Vulnerable: Yealink Yealink Hardware 28.2.0.128.0.0.0
Yealink Yealink Firmware 28.72.0.2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus