PT-2013-2970 · Cisco · Cisco Webex Meetings Server
Publicado
2013-06-06
·
Atualizado
2013-06-06
·
CVE-2013-1205
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco WebEx Meetings Server (affected versions not specified)
Description
The issue concerns the Event Center module in Cisco WebEx Meetings Server, where it fails to perform request authentication in all intended circumstances. This allows remote attackers to discover host keys and event passwords via crafted URLs.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Webex Meetings Server