CVE-2007-1467

Published Mar 16, 2007

Last updated 6 years ago

CVSS info 3.5

Overview

Description: Multiple cross-site scripting (XSS) vulnerabilities in (1) PreSearch.html and (2) PreSearch.class in Cisco Secure Access Control Server (ACS), VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator, Unified Video Advantage, Unified Videoconferencing 35xx products, Unified Videoconferencing Manager, WAN Manager, Security Device Manager, Network Analysis Module (NAM), CiscoWorks and related products, Wireless LAN Solution Engine (WLSE), 2006 Wireless LAN Controllers (WLC), and Wireless Control System (WCS) allow remote attackers to inject arbitrary web script or HTML via the text field of the search form.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 3.5
Impact score: 2.9
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:acs_solution_engine:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2053FEE9-7DE5-4C5E-B2C1-5652301DBFFE"
          },
          {
            "criteria": "cpe:2.3:a:cisco:acs_solution_engine:4.1:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3436B987-134F-47FD-94A9-B22E1D6E1F7A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:ciscoworks:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A687E771-9653-4FB6-888C-C6D7874E8F11"
          },
          {
            "criteria": "cpe:2.3:a:cisco:ip_communicator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E2590B4-F61E-4ED9-B4B2-45227CDF8E4D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:meetingplace:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41EEA208-7F2E-4E01-8C8C-29009161E6EF"
          },
          {
            "criteria": "cpe:2.3:a:cisco:security_device_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42E7C476-E8CE-4CD4-9ED2-926B4BA6EDF2"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_meetingplace:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "713CDBB9-F841-455A-B173-7B239DF087D1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_meetingplace_express:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8932A12B-BDAD-4078-92C3-720CE4E204CD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_personal_communicator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AC0A911-917D-426B-84D3-05BEAEE9C81F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_video_advantage:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1BDD7B4-CD06-44D9-855B-30FFE673014E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_videoconferencing:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B50D62D1-83D3-4347-A979-503294EC4B9B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_videoconferencing_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19065178-BD77-4ED5-AE31-9904E348B2C2"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2BD00D0A-EB6E-41AA-851D-9DD258E23BEA"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.1:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88EB557F-33CD-40FE-B470-04F93CB2F3E3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2EEB23E-4592-49A1-BDC6-110580340AAD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D548CEFE-1970-42D3-9039-196A3B5F5D0B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D4BDB9B-99D8-42B7-8D57-2B57029220F1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2b:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B2F5C5E1-59A5-4402-BF6A-DDD05F8F07F8"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2b:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "269EE54C-B6C7-4F3E-B4ED-12CF9F277569"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.2b:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12A573DB-1D58-4A78-85C6-B2A3B09F34B3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.4:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEB505B7-54A0-4A53-81FC-9E6635A50BB9"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.4:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1728BA7D-0124-4E7B-9D0A-549DB87F3732"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.5.4:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD1D17D3-F56E-47FC-90F9-54AC4446CB11"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.6:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A9F7CE9-771E-4F0C-B4DD-B9517F70BBCA"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.6:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C7B2037-406B-4A18-9B5D-D3F206C58AE5"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.6:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08A9E927-1092-4F6A-A099-DB80EA060F54"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.6.1:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "872A3F31-1008-416A-9881-803E7DF11B1B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.6.1:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50FB297D-5289-46D1-82C2-E83C3020895C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:3.6.1:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D88E0D0C-03EF-4528-93C9-97B39342CA82"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:4.0.2a:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C111372-50F2-4F3E-8DFE-1EB5509B489C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:4.0.2a:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B19317CB-C159-4BEF-B8F8-A919E8DF6783"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:4.0.2c:*:mac_os_x:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7C7C00F-72E3-41E1-A763-0209AF639053"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:4.0.2c:*:solaris:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B205CD80-4469-4DA9-B0E1-73C2B83E33D5"
          },
          {
            "criteria": "cpe:2.3:a:cisco:vpn_client:4.8.1:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FD6C3C5-A7D3-4208-A23C-BA7D5626FB92"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wan_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEFD455A-7E41-4C95-A1E9-1A4867DA4F4C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_controllers:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C88AB3CC-4F0E-4A82-B4F0-13EDA4948BC6"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_solution_engine:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FDEE04C-0231-42F7-9736-EB3B7A020E50"
          },
          {
            "criteria": "cpe:2.3:h:cisco:call_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12DE5E22-DF93-46BE-85A3-D4E04379E901"
          },
          {
            "criteria": "cpe:2.3:h:cisco:network_analysis_module:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD82BCCE-F68A-48A5-B484-98D9C3024E3A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:wireless_control_system:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFF3680D-50CB-4854-84B8-34129DDB2A2A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References