The web server in Cisco Unified MeetingPlace 6.1 and 8.5 produces different responses for directory queries depending on whether the directory exists, which allows remote attackers to enumerate directory names via a series of queries, aka Bug ID CSCtt94070.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2012-05-03 03:11
Updated : 2012-05-29 20:40
NVD link : CVE-2011-4232
Mitre link : CVE-2011-4232
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
cisco
- unified_meetingplace