CVE-2009-1220

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in +webvpn+/index.html in WebVPN on the Cisco Adaptive Security Appliances (ASA) 5520 with software 7.2(4)30 and earlier 7.2 versions including 7.2(2)22, and 8.0(4)28 and earlier 8.0 versions, when clientless mode is enabled, allows remote attackers to inject arbitrary web script or HTML via the Host HTTP header.

🔗 References (16)

cve@mitrehttp://archives.neohapsis.com/archives/fulldisclosure/2009-03/0478.html
cve@mitrehttp://tools.cisco.com/security/center/viewAlert.x?alertId=17950
cve@mitrehttp://www.securityfocus.com/archive/1/502313/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/502932
cve@mitrehttp://www.securityfocus.com/bid/34307
cve@mitrehttp://www.securitytracker.com/id?1022122
cve@mitrehttp://www.vupen.com/english/advisories/2009/1169
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/49528
af854a3a-2127-422b-91ae-364da2661108http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0478.html
af854a3a-2127-422b-91ae-364da2661108http://tools.cisco.com/security/center/viewAlert.x?alertId=17950
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/502313/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/502932
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/34307
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1022122
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2009/1169

Is Your Infrastructure Affected by CVE-2009-1220?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1220

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1220?