Cisco Webex Meetings Server Input Validation Vulnerability

Last Update Date: 6 May 2013 15:28 Release Date: 6 May 2013 3412 Views

RISK: Medium Risk

Medium Risk

TYPE: Clients - Im, Chat & Voip

TYPE: Im, Chat & Voip

A vulnerability has been identified in Cisco Webex Meetings Server. A remote user can view certain files on the target system.

 

The system does not properly validate user-supplied input. A remote user can supply a specially crafted HTTP request to a target WebEx node to read files from the cache directory.

Impact

  • Information Disclosure

System / Technologies affected

  • Cisco Webex Meetings Server
  • Cisco WebEx Node for MCS

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a fix for Cisco WebEx Meetings Server.
  • Note: No solution was available at the time for Cisco WebEx Node for MCS.

Vulnerability Identifier

  • No CVE information is available

Related Link

Share with

Previous

Cisco IOS XR SNMP Processing Vulnerability

6 May 2013 3447 Views

Next

Microsoft Internet Explorer Files and Folders Enumeration Vulnerabilities

7 May 2013 3600 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY