Cookie Verification Flaw in Cisco Unified MeetingPlace Web Conferencing Server
CVE-2013-1169

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Meetingplace Web Conferencing Server
Vendor: CVE Published:; 11 April 2013

Summary

A vulnerability exists in the Cisco Unified MeetingPlace Web Conferencing Server that allows remote attackers to impersonate legitimate users by exploiting a flaw in cookie validation associated with the 'Remember Me' feature. This issue affects multiple versions of the software, enabling unauthorized access via crafted login requests, thereby posing security risks to users and their data.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 11, 2013