Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8035

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-8035
Last Modified 12 Jan 2015 04:32:39
Published 09 Jan 2015 09:59:30
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-8035

Summary

The web framework in Cisco WebEx Meetings Server produces different returned messages for URL requests depending on whether a username exists, which allows remote attackers to enumerate user accounts via a series of requests, aka Bug ID CSCuj40247.

Vulnerable Systems

Application

  • Cisco Webex Meetings Server -


References

CISCO - 20150109 Cisco WebEx Meetings Server User Enumeration Vulnerability


Last Updated: 27 May 2016 11:07:29