5 matches found
Cisco WebEx MeetMeNow Server Directory Traversal Vulnerability
A vulnerability in a PHP file in the Cisco WebEx MeetMeNow Server could allow an authenticated, remote attacker to obtain the contents of arbitrary files on an affected device. The vulnerability is due to improper sanitization of user input. An exploit could allow the attacker to view the content...
CVE-2014-3340
Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNow allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCuo16166...
Directory traversal
Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNow allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCuo16166...
CVE-2014-3340
Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNow allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCuo16166...
CVE-2014-3340
Cisco's advisory for CVE-2014-3340 confirms a directory-traversal flaw in the Cisco WebEx MeetMeNow Server PHP component. An authenticated, remote attacker could read arbitrary files readable by the Apache user due to improper input sanitization in a PHP file. Impact is limited to file disclosure...