CVE-2006-3109

Cisco CallManager <4.3 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in Cisco CallManager 3.3 before 3.3(5)SR3, 4.1 before 4.1(3)SR4, 4.2 before 4.2(3), and 4.3 before 4.3(1), allows remote attackers to inject arbitrary web script or HTML via the (1) pattern parameter in ccmadmin/phonelist.asp and (2) arbitrary parameters in ccmuser/logon.asp, aka bugid CSCsb68657.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Jake Reynolds · textwebappsasp

https://www.exploit-db.com/exploits/28062

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Jake Reynolds · textwebappsasp

https://www.exploit-db.com/exploits/28061

View Code ZIP pw:eip

References (13)

Core 13

Core References

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/1114

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/26651

Exploit x_refsource_misc

http://www.fishnetsecurity.com/csirt/disclosure/cisco/Cisco+CallManager+XSS+Advisory.htm

Patch vendor-advisory x_refsource_cisco

http://www.cisco.com/en/US/products/sw/voicesw/ps556/tsd_products_security_response09186a00806c0846.html

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/18504

Mailing List mailing-list x_refsource_fulldisc

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047015.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/27225

Exploit, Patch vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1016328

Mailing List mailing-list x_refsource_fulldisc

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047019.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20735

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/2443

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/437757/100/0/threaded

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/26652

Scores

EPSS 0.2288

EPSS Percentile 95.9%

Details

Status published

Products (21)

cisco/call_manager 3.3

cisco/call_manager 3.3\(3\)

cisco/call_manager 3.3\(3\)es61

cisco/call_manager 3.3\(4\)es25

cisco/call_manager 3.3\(5\)

cisco/call_manager 3.3\(5\)es30

cisco/call_manager 3.3\(5\)sr1

cisco/call_manager 3.3\(5\)sr2

cisco/call_manager 4.1

cisco/call_manager 4.1\(2\)es33

... and 11 more

Published Jun 21, 2006

Tracked Since Feb 18, 2026