Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.Referenceshttp://tools.cisco.com/security/center/viewAlert.x?alertId=26036
