Signature Detail
Short Name |
HTTP:XSS:CISCOWORKS-CSFHS |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
CiscoWorks Common Services Framework Help Servlet Cross Site Scripting |
Release Date |
2011/05/24 |
Update Number |
1925 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: CiscoWorks Common Services Framework Help Servlet Cross Site Scripting
This signature detects attempts to exploit a known cross-site scripting vulnerability in the CiscoWorks Common Services Framework Help Servlet. It is due to insufficient validation of user-supplied input. Attackers can steal cookie-based authentication credentials and launch other attacks.
Extended Description
CiscoWorks Common Services is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this vulnerability could allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website. As a result, the attacker may be able to steal cookie-based authentication credentials and launch other attacks. This issue is being monitored by Cisco Bug ID CSCto12704. CiscoWorks Common Services 3.3 and prior are vulnerable.
Affected Products
- Cisco CiscoWorks Common Services 1.0
- Cisco CiscoWorks Common Services 2.2
- Cisco CiscoWorks Common Services 2.3
- Cisco CiscoWorks Common Services 3.0
- Cisco CiscoWorks Common Services 3.0.3
- Cisco CiscoWorks Common Services 3.0.4
- Cisco CiscoWorks Common Services 3.0.5
- Cisco CiscoWorks Common Services 3.0.6
- Cisco CiscoWorks Common Services 3.1
- Cisco CiscoWorks Common Services 3.1.1
- Cisco CiscoWorks Common Services 3.2
- Cisco CiscoWorks Common Services 3.3
References
- BugTraq: 47902
- CVE: CVE-2011-0961
- URL: http://www.cisco.com/
- URL: http://tools.cisco.com/security/center/viewAlert.x?alertId=23088