CVE-2008-2165 Information

Description

Cross-site scripting (XSS) vulnerability in AccessCodeStart.asp in Cisco Building Broadband Service Manager (BBSM) Captive Portal 5.3 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

Reference

http://secunia.com/advisories/30222 http://securityreason.com/securityalert/3895 http://securitytracker.com/id?1020018 http://www.securityfocus.com/archive/1/492043/100/0/threaded http://www.securityfocus.com/archive/1/492093/100/0/threaded http://www.securityfocus.com/bid/29191 http://www.vupen.com/english/advisories/2008/1535 https://exchange.xforce.ibmcloud.com/vulnerabilities/42395