First published: Thu Nov 08 2007(Updated: )
Multiple cross-site scripting (XSS) vulnerabilities in mpweb/scripts/mpx.dll in Cisco Unified MeetingPlace 5.4 and earlier and 6.0 allow remote attackers to inject arbitrary web script or HTML via the (1) FirstName and (2) LastName parameters.
Credit: ykramarz@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco Unified MeetingPlace | <=5.4 | |
Cisco Unified MeetingPlace | =5.3 | |
Cisco Unified MeetingPlace | =5.0 | |
Cisco Unified MeetingPlace | =5.2 | |
Cisco Unified MeetingPlace | =4.3.0.246 | |
Cisco Unified MeetingPlace | =4.3.0.246.5 | |
Cisco Unified MeetingPlace | =5 | |
Cisco Unified MeetingPlace | =6.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.