DRIVERS: SCIENTIFIC ATLANTA EPC2203 MODEM

An unauthenticated, remote attacker could exploit this vulnerability by convincing a user to visit a website that is designed to submit a crafted HTTP POST request to the web interface of the affected product. Cisco Scientific Atlanta cable modems D20 and D30 based products contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. Affected Products Vendor announcements are not available. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco. The vulnerability is due to insufficient sanitization of user-supplied input to the web wizard setup web page. Administrators are advised to contact the vendor regarding future updates and releases. Fixed Software Cisco will be releasing fixed software versions in an upcoming GA release for the following products:

Uploader: Dishicage
Date Added: 25 October 2011
File Size: 6.72 Mb
Operating Systems: Windows NT/2000/XP/2003/2003/7/8/10 MacOS 10/X
Downloads: 62717
Price: Free* [*Free Regsitration Required]

Version Description Section Status Date 1. If users cannot verify that links or attachments included in e-mail messages are safe, they are advised not to open them. Garcia artsweb for discovering this vulnerability.

Scientific Atlanta Epc Cable Modem For Sale in Rathcoole, Dublin from jochar

Service providers will be able to issue the update to the atlatna on the consumers’ behalf as part of their software maintenance procedures. Home Skip to content Skip to footer.

No other Cisco products are currently known to be affected by these vulnerabilities. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

To exploit the vulnerability, the attacker may provide a link via e-mail, instant messaging, or another form of communication that directs scientific atlanta epc2203 modem user to scientific atlanta epc2203 modem malicious site and use misleading language or instructions to persuade the user to follow the provided link.

Cisco has confirmed this vulnerability, and updates will be made available to service providers. An unauthenticated, remote attacker could exploit this vulnerability by convincing a user to visit a website that is designed to submit a crafted HTTP POST request to the web interface of the affected product.

The vulnerability is due to insufficient sanitization of user-supplied input to the web wizard setup web page. Cisco Security Vulnerability Policy.

Cisco Security

To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy. Administrators are advised to monitor affected systems. Proof-of-concept code is publicly available. Users are advised not to open e-mail messages from suspicious or unrecognized sources.

Scientific Atlanta EPC2203 Manuals

Updates are not available to end users; epc22203 will be made available to service providers for deployment to their end users at their discretion. The information in this document scientific atlanta epc2203 modem intended for end-users of Cisco products.

Fixed Software Cisco will be releasing fixed software versions in an upcoming GA release for the following products: Scientific atlanta epc2203 modem would like to thank Marcos M. The Cisco Applied Intelligence team has created the following companion document to guide administrators in identifying scietnific mitigating attempts to exploit this vulnerability prior to scientific atlanta epc2203 modem updated software: Cisco will be releasing fixed software versions in an upcoming GA release for the following products:.

Cisco will be releasing fixed software versions in an upcoming GA release for the following products: Affected Products Vendor announcements are not available. mpdem

Cisco Scientific Atlanta cable modems D20 and D30 based products contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. Administrators are advised to contact the vendor scientific atlanta epc2203 modem future updates and releases.

There is no fix planned for this EOL product.

Scientific Atlanta EPC Manuals

Workarounds Administrators are advised to contact the vendor regarding future updates and releases. Cisco Security Vulnerability Policy To learn about Ep2203 security vulnerability disclosure policies and publications, see the Security Vulnerability Policy.

A stand-alone copy or paraphrase of the text of this document that omits the distribution URL scientific atlanta epc2203 modem an uncontrolled copy, and may lack important information or contain factual errors.

Vendor announcements are not available.