Cross-Frame Scripting Vulnerability in Cisco Prime LAN Management Solution
CVE-2013-5482

Currently unrated

Key Information:

Vendor
Cisco
Status
Prime Lan Management Solution
Vendor
CVE Published:
13 September 2013

Summary

The Cisco Prime LAN Management Solution contains a vulnerability due to improper restrictions on IFRAME elements, which can be exploited by remote attackers. This weakness allows attackers to conduct clickjacking attacks and potentially other malicious actions by utilizing a crafted website. The issue is associated with cross-frame scripting and is designated under Bug ID CSCug77823. Organizations using this solution should take measures to mitigate potential risks associated with this vulnerability.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.