CVE-2007-2035

Name of the Vulnerable Software and Affected Versions Cisco Wireless Control System (WCS) versions prior to 4.0.66.0

Description The issue allows remote attackers to obtain network organization data via a direct request for files in certain directories due to insufficient access control. This is because sensitive information is stored under the web root.

Recommendations For versions prior to 4.0.66.0, update to version 4.0.66.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive directories under the web root to minimize the risk of exploitation.