CVE-2007-1467

Name of the Vulnerable Software and Affected Versions Cisco Secure Access Control Server (ACS) (affected versions not specified) Cisco VPN Client (affected versions not specified) Cisco Unified Personal Communicator (affected versions not specified) Cisco MeetingPlace (affected versions not specified) Cisco Unified MeetingPlace (affected versions not specified) Cisco Unified MeetingPlace Express (affected versions not specified) Cisco CallManager (affected versions not specified) Cisco IP Communicator (affected versions not specified) Cisco Unified Video Advantage (affected versions not specified) Cisco Unified Videoconferencing 35xx products (affected versions not specified) Cisco Unified Videoconferencing Manager (affected versions not specified) Cisco WAN Manager (affected versions not specified) Cisco Security Device Manager (affected versions not specified) Cisco Network Analysis Module (NAM) (affected versions not specified) CiscoWorks (affected versions not specified) Cisco Wireless LAN Solution Engine (WLSE) (affected versions not specified) 2006 Cisco Wireless LAN Controllers (WLC) (affected versions not specified) Cisco Wireless Control System (WCS) (affected versions not specified)

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities in various Cisco products. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the text field of the search form. The vulnerability exists because the search feature of the web-based Online Help System interface fails to sufficiently filter user-supplied input. An unauthenticated, remote attacker could exploit this vulnerability by convincing a user to follow a crafted link, which could allow the attacker to execute arbitrary code in a user's browser in the context of the affected site. This may permit the attacker to access sensitive browser information or take actions on the affected site as the targeted user. In some cases, an attacker may make configuration changes on an affected system with the privileges of the targeted user.

Recommendations For all affected versions, consider disabling the search feature of the web-based Online Help System interface until a patch is available. Restrict access to the Online Help System to minimize the risk of exploitation. Avoid following unsolicited links while performing maintenance tasks on any of the affected systems. Ensure that administrators log out after the completion of an administration session to prevent valid authentication cookies from remaining on administrator workstations. At the moment, there is no information about a newer version that contains a fix for this vulnerability.