CVE-2011-4232

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Meetingplace
Vendor: CVE Published:; 3 May 2012

Summary

The web server in Cisco Unified MeetingPlace 6.1 and 8.5 produces different responses for directory queries depending on whether the directory exists, which allows remote attackers to enumerate directory names via a series of queries, aka Bug ID CSCtt94070.

References

http://www.securityfocus.com/bid/53432

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/docs/voice_ip_comm/meetingplac...

x_refsource_CONFIRM

Timeline

Vulnerability published
May 3, 2012
Vulnerability Reserved
Nov 1, 2011