0
CISCO Cross-Site Scripting Vulnerability in Online Help System
Es ist einem Angreifer moeglich, schaedlichen Code ueber den Webbrowser des Benutzers auf dem Rechner ausfuehren zu lassen. Vorbedingung fuer einen erfolgreichen Angriff ist es den Benutzer auf eine zu diesem Zweck praeparierte Website zu locken.
Public release: 15. Maerz 2007
Betroffene Produkte:
Cisco Secure Access Control Server (ACS) for Windows version 4.1 and Cisco Secure ACS Solution Engine version 4.1. Cisco Bug ID CSCsh91761 .
Cisco VPN Client. Cisco Bug ID CSCsh52300 .
Cisco Unified Personal Communicator. Cisco Bug ID CSCsh91884 .
Cisco MeetingPlace and Cisco Unified MeetingPlace, end-user and Admin help systems. Cisco Bug ID CSCsi12435 .
Cisco Unified MeetingPlace Express, end-user and Admin help systems. Cisco Bug ID CSCsh91901 .
Cisco CallManager. Cisco Bug ID CSCsi10405 .
Cisco IP Communicator. Cisco Bug ID CSCsh91953 .
Cisco Unified Video Advantage (ehemals Cisco VT Advantage). Cisco Bug ID CSCsh93070 .
Cisco Unified Videoconferencing 3545 System,
Cisco Unified Videoconferencing 3540 Series Videoconferencing System,
Cisco Unified Videoconferencing 3515 MCU,
Cisco Unified Videoconferencing 3527 PRI Gateway,
Cisco Unified Videoconferencing 3526 PRI Videoconferencing Gateway,
Cisco Unified Videoconferencing Manager.
Cisco Bug ID CSCsh93854.
Cisco WAN Manager (CWM). Cisco Bug ID CSCek71039.
Cisco Security Device Manager. Cisco Bug ID CSCsh95009 .
Cisco Network Analysis Module (NAM) for Catalyst 6500 series switches,
Cisco 7600 series routers, and for modular IOS routers.
Cisco Bug ID CSCsi10818.
CiscoWorks and all products that integrate with CiscoWorks. Cisco Bug ID CSCsi10674 .
Affected CiscoWorks-related products include:
Management Center for IPS Sensors
Security Monitor
CiscoWorks LAN Management Solution
Router Management Essentials
Common Services
Device Fault Manager
CiscoView
Internetwork Performance Monitor (IPM)
Campus Manager
Cisco Wireless LAN Solution Engine (WLSE). Cisco Bug ID CSCsi10982.
Cisco 2006 Wireless LAN Controllers (WLC). Cisco Bug ID CSCsi13743.
Cisco Wireless Control System (WCS). Cisco Bug ID CSCsi13763.
Workaround:
In some cases it is possible to eliminate the vulnerability by removing or renaming the files PreSearch.html and PreSearch.class (if they exist - use your operating system's file search feature to locate them.) Please note that this workaround is not applicable to appliances and other products where direct access to the file system is not available, and that by removing or renaming these files it will no longer be possible to search the product's online help contents.
Patchstatus:
Fuer registrierte Kunden o.g. Produkte sind Bug-Toolkits erhaeltlich!
Weitere Links:
Original-Disclosure: http://www.cisco.com/warp/public/707/cisco-sr-20070315-xss.shtml
Understanding XSS-Threats: http://www.cisco.com/warp/public/707/cisco-air-20060922-understanding-x ...
Alle Cisco security advisories: http://www.cisco.com/go/psirt
Credits:
Erwin Paternotte from Fox-IT, Cassio Goldschmidt.
saludos
gnarff
Betroffene Produkte:
Cisco Secure Access Control Server (ACS) for Windows version 4.1 and Cisco Secure ACS Solution Engine version 4.1. Cisco Bug ID CSCsh91761 .
Cisco VPN Client. Cisco Bug ID CSCsh52300 .
Cisco Unified Personal Communicator. Cisco Bug ID CSCsh91884 .
Cisco MeetingPlace and Cisco Unified MeetingPlace, end-user and Admin help systems. Cisco Bug ID CSCsi12435 .
Cisco Unified MeetingPlace Express, end-user and Admin help systems. Cisco Bug ID CSCsh91901 .
Cisco CallManager. Cisco Bug ID CSCsi10405 .
Cisco IP Communicator. Cisco Bug ID CSCsh91953 .
Cisco Unified Video Advantage (ehemals Cisco VT Advantage). Cisco Bug ID CSCsh93070 .
Cisco Unified Videoconferencing 3545 System,
Cisco Unified Videoconferencing 3540 Series Videoconferencing System,
Cisco Unified Videoconferencing 3515 MCU,
Cisco Unified Videoconferencing 3527 PRI Gateway,
Cisco Unified Videoconferencing 3526 PRI Videoconferencing Gateway,
Cisco Unified Videoconferencing Manager.
Cisco Bug ID CSCsh93854.
Cisco WAN Manager (CWM). Cisco Bug ID CSCek71039.
Cisco Security Device Manager. Cisco Bug ID CSCsh95009 .
Cisco Network Analysis Module (NAM) for Catalyst 6500 series switches,
Cisco 7600 series routers, and for modular IOS routers.
Cisco Bug ID CSCsi10818.
CiscoWorks and all products that integrate with CiscoWorks. Cisco Bug ID CSCsi10674 .
Affected CiscoWorks-related products include:
Management Center for IPS Sensors
Security Monitor
CiscoWorks LAN Management Solution
Router Management Essentials
Common Services
Device Fault Manager
CiscoView
Internetwork Performance Monitor (IPM)
Campus Manager
Cisco Wireless LAN Solution Engine (WLSE). Cisco Bug ID CSCsi10982.
Cisco 2006 Wireless LAN Controllers (WLC). Cisco Bug ID CSCsi13743.
Cisco Wireless Control System (WCS). Cisco Bug ID CSCsi13763.
Workaround:
In some cases it is possible to eliminate the vulnerability by removing or renaming the files PreSearch.html and PreSearch.class (if they exist - use your operating system's file search feature to locate them.) Please note that this workaround is not applicable to appliances and other products where direct access to the file system is not available, and that by removing or renaming these files it will no longer be possible to search the product's online help contents.
Patchstatus:
Fuer registrierte Kunden o.g. Produkte sind Bug-Toolkits erhaeltlich!
Weitere Links:
Original-Disclosure: http://www.cisco.com/warp/public/707/cisco-sr-20070315-xss.shtml
Understanding XSS-Threats: http://www.cisco.com/warp/public/707/cisco-air-20060922-understanding-x ...
Alle Cisco security advisories: http://www.cisco.com/go/psirt
Credits:
Erwin Paternotte from Fox-IT, Cassio Goldschmidt.
saludos
gnarff
Share on Facebook
Share on Twitter
Share on Reddit
Share on LinkedinPlease also mark the comments that contributed to the solution of the article
Content-Key: 54236
Url: https://administrator.de/contentid/54236
Printed on: April 23, 2024 at 21:04 o'clock
