Guest

Preview Tool

Cisco Bug: CSCsy82517 - XSS in ccmuser within phone personal address book

Last Modified

Jan 31, 2017

Products (1)

  • Cisco Unified Communications Manager (CallManager)

Known Affected Releases

6.1 6.1(3) 7.1(2.39081.1) 8.0(0.38000.409) 8.0(0.38011.1)

Description (partial)

<B>Symptom:</B>
User  can enter scripts into CCMUser personal address book
 
<B>Conditions:</B>

User  must have valid login id/password
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.