Uninitialized Memory Read in Cisco WebEx Products
CVE-2013-1232

Currently unrated

Key Information:

Vendor: Cisco
Status: Webex Node For Asr 1000 Series; Webex Meetings Server; Webex Node For Mcs
Vendor: CVE Published:; 4 May 2013

Summary

The HTTP implementation in certain Cisco WebEx products contains a vulnerability that allows remote attackers to access uninitialized memory locations. By sending specially crafted requests, an attacker can potentially read sensitive information stored in these memory locations, which may lead to disclosure of private data. This vulnerability affects Cisco WebEx Node for MCS, WebEx Meetings Server, and ASR 1000 Series, and highlights the importance of prompt security measures to protect user data from exploitation.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
May 4, 2013
Vulnerability Reserved
Jan 11, 2013