URI Enumeration Vulnerability in Cisco Unified Communications Domain Manager
CVE-2015-6352

Currently unrated

Key Information:

Vendor: Cisco
Status: Hosted Collaboration Solution
Vendor: CVE Published:; 30 October 2015

Summary

The vulnerability in Cisco Unified Communications Domain Manager allows remote attackers to exploit error message discrepancies during pathname access attempts. This behavior can lead to unauthorized filesystem mapping through a series of crafted requests, potentially exposing sensitive information and creating opportunities for further attacks.

References

http://www.securitytracker.com/id/1034022

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/77341

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 30, 2015
Vulnerability Reserved
Aug 17, 2015