Open Redirection Vulnerability

Open Redirection Vulnerability has been found on Cisco site

The URL: is suffering form the flaw.

Threat: DOS Attack, Phishing.

The following URL will redirect a user to another site(eg:
The URL can be used for Phishing attack

This can be further escalated by mal-forming the link. Something like
the following can be used to cause the Denial of Service Attack:

Vendor Notification: Vendor was notified on January 03,2009.
They assured me that they will look in the matter but few days before it was 'unfixed'.


Popular posts from this blog

SQL Injection in search field

File Upload through Null Byte Injection