CVE-2014-3375 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters aka Bug ID CSCuq90597.

Reference

http://secunia.com/advisories/61025 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3375 http://tools.cisco.com/security/center/viewAlert.x?alertId=36297 http://www.securityfocus.com/bid/70850 http://www.securitytracker.com/id/1031163 https://exchange.xforce.ibmcloud.com/vulnerabilities/98408