VoIP (Voice over IP) allows the integration of your data network and voice communication through a single medium, sending voice over your IP network (through LAN/WAN/Internet). | Cisco Guard Enables Cross Site Scripting |
| Wednesday, 20 September 2006 | |
| A vulnerability in the Cisco Guard may enable an attacker to send a web browser client to a malicious website with the use of Cross Site Scripting (XSS) when the Guard is providing anti-spoofing services between the web browser client and a webserver. The attacker may exploit this by providing a malicious URL for the web browser client to go to, often in email, followed off of a malicious website, or in an instant message. This issue may occur even if the protected website does not allow XSS. A software upgrade is required to fix this vulnerability. There is a workaround available to mitigate the effects of the vulnerability. |