2 matches found
Cisco WebEx Training Center email枚举漏洞
Bugtraq ID:64292 CVE ID:CVE-2013-6968 Cisco WebEx Training Center是一款互动式培训解决方案,可开展电子教学。 Cisco WebEx Training Center中的培训注册页面存在安全漏洞,允许远程未验证远程攻击者枚举注册参会者的Email地址。 漏洞是由于注册错误系哦啊系,允许用户通过判断注册过程中返回的不同消息来获取其他用户的email地址信息。攻击者发送多个注册请求可触发该漏洞。 0 Cisco WebEx Training Center 厂商补丁: Cisco -----...
CVE-2013-6968
Cisco WebEx Training Center is affected by CVE-2013-6968, a vulnerability in the training registration page where error messages differ depending on whether an email exists, enabling remote attackers to enumerate registered attendees via multiple registration requests (Bug CSCul36003). Affected p...