Information Disclosure Vulnerability in Cisco WebEx Meeting Center
CVE-2013-6970

Currently unrated

Key Information:

Vendor: Cisco
Status: Webex Meeting Center
Vendor: CVE Published:; 14 December 2013

Summary

Cisco WebEx Meeting Center is susceptible to an information disclosure vulnerability that allows remote attackers to access sensitive information. The vulnerability arises from verbose error messages returned in server responses, which can inadvertently reveal critical information about the system's configuration. This can be exploited by an attacker to gather details about the WebEx Meeting Center, potentially leading to further attacks. It is recommended that users of the product review the configuration settings and implement necessary changes to mitigate this risk.

References

http://www.securityfocus.com/bid/64306

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://osvdb.org/101002

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 14, 2013
Vulnerability Reserved
Dec 5, 2013