Vulnerability Details CVE-2014-3304
The OutlookAction Class in Cisco WebEx Meetings Server allows remote attackers to enumerate user accounts by entering crafted URLs and examining the returned messages, aka Bug ID CSCuj81722.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3304
- http://www.securityfocus.com/bid/68911
- http://www.securitytracker.com/id/1030641
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94880
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3304
- http://www.securityfocus.com/bid/68911
- http://www.securitytracker.com/id/1030641
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94880
Products affected by CVE-2014-3304
-
cpe:2.3:a:cisco:webex_meetings_server:-