Published: 14/12/2013 Updated: 29/11/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote malicious users to enumerate attendees via a series of requests, aka Bug ID CSCul36003.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco webex training center -

A vulnerability in the training registration page in Cisco WebEx Training Center could allow an unauthenticated, remote attacker to enumerate email addresses of registered attendees The vulnerability is due to registration error messages that allow a user to determine that an email address supplied during registration has already been specified b ...

CWE-200 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6968 http://tools.cisco.com/security/center/viewAlert.x?alertId=32147 http://www.securitytracker.com/id/1029492 http://osvdb.org/100913 https://exchange.xforce.ibmcloud.com/vulnerabilities/89688 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20131213-CVE-2013-6968

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-6968

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect