← Back

CVE-2007-1467

nvd nist
Published: Mar 16, 2007Modified: Apr 23, 2026

JSON object

Loading...
3.5
Vector
AV:N/AC:M/Au:S/C:N/I:P/A:N
Exploitability: 6.8 / Impact: 2.9
Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in (1) PreSearch.html and (2) PreSearch.class in Cisco Secure Access Control Server (ACS), VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator, Unified Video Advantage, Unified Videoconferencing 35xx products, Unified Videoconferencing Manager, WAN Manager, Security Device Manager, Network Analysis Module (NAM), CiscoWorks and related products, Wireless LAN Solution Engine (WLSE), 2006 Wireless LAN Controllers (WLC), and Wireless Control System (WCS) allow remote attackers to inject arbitrary web script or HTML via the text field of the search form.

Affected (40)

Cisco
18 products
Acs Solution Engine
Call Manager
Ciscoworks
Ip Communicator
Meetingplace
Network Analysis Module
Security Device Manager
Unified Meetingplace
Unified Meetingplace Express
Unified Personal Communicator
Unified Video Advantage
Unified Videoconferencing
Unified Videoconferencing Manager
Vpn Client
Wan Manager
Wireless Control System
Wireless Lan Controllers
Wireless Lan Solution Engine
Configuration A
40 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Acs Solution Engine
Version 4.1
Acs Solution Engine
Version 4.1
Call Manager
All versions
Ciscoworks
All versions
Ip Communicator
All versions
Meetingplace
All versions
Network Analysis Module
All versions
Security Device Manager
All versions
Unified Meetingplace
All versions
Unified Meetingplace Express
All versions
Unified Personal Communicator
All versions
Unified Video Advantage
All versions
Unified Videoconferencing
All versions
Unified Videoconferencing Manager
All versions
Cisco
Vpn Client
Version 3.5.1
Vpn Client
Version 3.5.1
Vpn Client
Version 3.5.2
Vpn Client
Version 3.5.2
Vpn Client
Version 3.5.2
Vpn Client
Version 3.5.2b
Vpn Client
Version 3.5.2b
Vpn Client
Version 3.5.2b
Vpn Client
Version 3.5.4
Vpn Client
Version 3.5.4
Vpn Client
Version 3.5.4
Vpn Client
Version 3.6.1
Vpn Client
Version 3.6.1
Vpn Client
Version 3.6.1
Vpn Client
Version 3.6
Vpn Client
Version 3.6
Vpn Client
Version 3.6
Vpn Client
Version 4.0.2a
Vpn Client
Version 4.0.2a
Vpn Client
Version 4.0.2c
Vpn Client
Version 4.0.2c
Vpn Client
Version 4.8.1
Wan Manager
All versions
Wireless Control System
Version 4.0
Wireless Lan Controllers
All versions
Wireless Lan Solution Engine
All versions

References (18)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.