Cross-site scripting (XSS) vulnerability in the Push-Service-Mails feature in AVM FRITZ!OS before 6.30 allows remote attackers to inject arbitrary web script or HTML via the display name in the FROM field of an SIP INVITE message.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-01-12T19:00:00

Updated: 2024-08-06T07:43:45.672Z

Reserved: 2015-09-18T00:00:00

Link: CVE-2015-7242

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-01-12T19:59:05.003

Modified: 2024-11-21T02:36:25.170

Link: CVE-2015-7242

cve-icon Redhat

No data.