2 matches found
CVE-2014-3286
The web framework in Cisco WebEx Meeting Server does not properly restrict the content of reply messages, which allows remote attackers to obtain sensitive information via a crafted URL, aka Bug IDs CSCuj81685, CSCuj81688, CSCuj81665, CSCuj81744, and CSCuj81661...
CVE-2014-3286
CVE-2014-3286 affects Cisco WebEx Meetings Server. The vulnerability resides in the web framework’s handling of reply messages, where improper sanitization allows an unauthenticated, remote attacker to enumerate valid user accounts by sending crafted URLs. Cisco's advisory confirms the issue and ...