Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61185
HistoryDec 18, 2013 - 12:00 a.m.

Cisco WebEx Training Center Email验证绕过音频会议加入漏洞

2013-12-1800:00:00
Root
www.seebug.org
20

EPSS

0.003

Percentile

69.0%

JSON

Bugtraq ID:64281
CVE ID:CVE-2013-6965

Cisco WebEx Training Center是一款互动式培训解决方案,可开展电子教学。

Cisco WebEx Training Center培训中心注册页面存在安全漏洞,允许未验证远程攻击者无需要提供合法Email地址加入培训会议的音频会议。漏洞是由于注册结束之前泄漏了培训会话信息URL,攻击者可收集泄漏URL中的培训会话访问代码和密码,使用这些信息加入受限会议。
0
Cisco WebEx Training Center
厂商补丁:

Cisco

用户可参考如下厂商提供的安全公告获得补丁信息:

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6965

Related

cisco 1
cve 1
prion 1
nvd 1
cvelist 1
cisco
cisco
Cisco WebEx Training Center Bypass Email Verification to Join Audio Conference Vulnerability
2013-12-13 19:12:46
cve
cve
CVE-2013-6965
2013-12-14 22:55:14
prion
prion
Design/Logic Flaw
2013-12-14 22:55:00
nvd
nvd
CVE-2013-6965
2013-12-14 22:55:14
cvelist
cvelist
CVE-2013-6965
2013-12-14 22:00:00

EPSS

0.003

Percentile

69.0%

JSON
Related for SSV:61185
cisco1cve1prion1nvd1cvelist1