Americas
Europe
Oceania
+34 91 567 20 50
+34 91 567 20 50
Contact Center
Colaboración
Sistemas telefónicos empresariales
Terminales y accesorios
¿Preguntas o comentarios?
+34 91 567 20 50
Su necesidad empresarial
Su sector
Tamaño de la empresa
Nuestros servicios
Nuestros productos
Asistencia al cliente
Soporte para socios
Formación
Contacto de ventas
Blog
Acerca de Mitel
Carreras
Éxito del cliente
Centro de recursos
Advisory ID: 16-0012
Publish Date: 2016-06-03
Revision: 1.0
Summary
A Cross-Site Scripting (XSS) Vulnerability was identified in MiCollab AWV.
Credit is given to Andrew Tierney, of Pen Test Partners, for the discovery and working with Mitel under coordinated disclosure.
Detailed Description
The identified vulnerability would allow an attacker to inject malicious scripts into a specific web page which would then be unknowingly executed by other users (potential victims) when vising the page.
Affected Products
The following products have been identified as being affected and vulnerable (updated 2016-06-03):
Product Name | Product Versions | Security Bulletin | Last Updated |
MiCollab AWV | 6.x, 5.x | 16-0012-001 | 2016-06-03 |
External References
n/a
n/a