CVE-2014-8024

Currently unrated

Key Information:

Vendor: Cisco
Status: Jabber Guest
Vendor: CVE Published:; 23 December 2014

Summary

The API in the Guest Server in Cisco Jabber, when the HTML5 CORS feature is used, allows remote attackers to obtain sensitive information by sniffing the network during an HTTP (1) GET or (2) POST request, aka Bug ID CSCus19789.

References

http://www.securitytracker.com/id/1031422

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/71770

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Dec 23, 2014
Vulnerability Reserved
Oct 8, 2014