CVE-2007-2035

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Control System
Vendor: CVE Published:; 16 April 2007

Summary

Cisco Wireless Control System (WCS) before 4.0.66.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain network organization data via a direct request for files in certain directories, aka Bug ID CSCsg04301.

References

http://www.cisco.com/warp/public/707/cisco-sa-20070412-wc...

vendor-advisoryx_refsource_CISCO

http://www.vupen.com/english/advisories/2007/1367

vdb-entryx_refsource_VUPEN

http://securitytracker.com/id?1017907

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Apr 16, 2007
Vulnerability Reserved
Apr 16, 2007