CVE-2014-2104 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in the Business Voice Services Manager (BVSM) page in Cisco Unified Communications Domain Manager 9.0(.1) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters aka Bug IDs CSCum78536 CSCum78526 CSCum69809 and CSCum63113.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2104 http://tools.cisco.com/security/center/viewAlert.x?alertId=33111 http://www.securityfocus.com/bid/65869