Arbitrary File Download Vulnerability in Cisco WebEx Meetings Client
CVE-2014-3310

Currently unrated

Key Information:

Vendor

Cisco
Status
Webex Meeting Center
Webex Meetings Server
Vendor
CVE Published:
10 July 2014

What is CVE-2014-3310?

The File Transfer feature in Cisco WebEx Meetings Client does not properly verify that a requested file matches the intended files offered during a session. This vulnerability allows remote attackers to manipulate requests and access arbitrary files on the server. The issue has been associated with Bug IDs CSCup62442 and CSCup58463, potentially exposing sensitive information to unauthorized parties.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO
http://www.securitytracker.com/id/1030551
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/68503
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.