CVE-2007-5411

Publication date

2007-10-12 18:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Linksys SPA941 VoIP Phone with firmware 5.1.8 allows remote attackers to inject arbitrary web script or HTML via the From header in a SIP message.