CVE-2014-3289: XSS
First published: Tue Jun 10 2014(Updated: )
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and earlier, and Content Security Management Appliance (SMA) 8.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted parameter, as demonstrated by the date_range parameter to monitor/reports/overview on the IronPort ESA, aka Bug IDs CSCun07998, CSCun07844, and CSCun07888.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco AsyncOS | <=8.0 | |
| Cisco Web Security Appliance | ||
| Cisco AsyncOS | <=8.3 | |
| Cisco Content Security Management | ||
| Cisco AsyncOS | =8.0 | |
| Cisco Email Security Appliance |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/127004/Cisco-Ironport-Email-Security-Virtual-Appliance-8.0.0-671-XSS.html
- http://seclists.org/fulldisclosure/2014/Jun/57
- http://secunia.com/advisories/58296
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3289
- http://tools.cisco.com/security/center/viewAlert.x?alertId=34569
- http://www.kb.cert.org/vuls/id/613308
- http://www.securityfocus.com/bid/67943
- http://www.securitytracker.com/id/1030407
Frequently Asked Questions
What is the severity of CVE-2014-3289?
CVE-2014-3289 is classified as a medium severity vulnerability due to its potential for remote exploitation via cross-site scripting.
How do I fix CVE-2014-3289?
To fix CVE-2014-3289, update to the latest version of Cisco AsyncOS that addresses this XSS vulnerability.
What products are affected by CVE-2014-3289?
CVE-2014-3289 affects Cisco AsyncOS on Email Security Appliance, Web Security Appliance, and Content Security Management Appliance versions prior to the specified updates.
Can CVE-2014-3289 be exploited remotely?
Yes, CVE-2014-3289 can be exploited remotely by attackers injecting malicious scripts through the web management interface.
What type of vulnerability is CVE-2014-3289?
CVE-2014-3289 is a cross-site scripting (XSS) vulnerability that allows for the injection of arbitrary web scripts.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/weakness
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco asyncos
- version/cisco asyncos/8.0
- canonical/cisco web security appliance
- version/cisco asyncos/8.3
- canonical/cisco content security management
- canonical/cisco email security appliance