CVE-2014-8025

Currently unrated

Key Information:

Vendor
Cisco
Status
Jabber Guest
Vendor
CVE Published:
23 December 2014

Summary

The API in the Guest Server in Cisco Jabber, when HTML5 is used, allows remote attackers to obtain sensitive information by sniffing the network during an HTTP (1) GET or (2) POST response, aka Bug ID CSCus19801.

References

http://www.securitytracker.com/id/1031422
vdb-entryx_refsource_SECTRACK
https://tools.cisco.com/security/center/viewAlert.x?alert...
vendor-advisoryx_refsource_CISCO
http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.