This host is running Cisco Content Security Management Appliance and is prone to cross site scripting and cross site request forgery vulnerabilities.

Successful exploitation will allow attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Impact Level: Application

Upgrade to latest version of Cisco CSMA or Apply the patch, For updates refer to http://www.cisco.com/en/US/products/ps12503/index.html

Multiple flaws are due to, - The lack of output escaping in the default error 500 page. When a exception occurs in the application, the error description contains user unvalidated input from the request. - The lack of input validation on job_name, job_type, appliances_options and config_master parameters which are then printed unscapped on job_name, old_job_name, job_type, appliance_lists and config_master fields. - The CSRFKey is not used in some areas of the application.

Cisco Content Security Management Appliance (SMA) 8.1 and prior

Get the installed version of Cisco Content Security Management Appliance with the help of detect NVT and check the version is vulnerable or not.

• http://1337day.com/exploit/21168
• http://packetstormsecurity.com/files/122955
• http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3396
• http://tools.cisco.com/security/center/viewAlert.x?alertId=29844

---

Updated on 2017-03-28