Published: 26/01/2014 Updated: 09/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The Citrix GoToMeeting application 5.0.799.1238 for Android logs HTTP requests containing sensitive information, which allows malicious users to obtain user IDs, meeting details, and authentication tokens via an application that reads the system log file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
citrix gotomeeting 5.0.799.1238

source: wwwsecurityfocuscom/bid/65123/info GoToMeeting for Android is prone to multiple local information-disclosure vulnerabilities Local attackers can exploit these issues to obtain sensitive information, which may aid in further attacks GoToMeeting 507991238 is vulnerable; other versions may also be affected <! ----- SNIPP ...

GoToMeeting Android application (comcitrixonlineandroidgotomeeting-1apk) version 507991238 is vulnerable to information disclosure via logging output, resulting in the leak of userID, meeting details, and authentication tokens Android applications with permissions to read system log files may obtain the leaked information ...

CWE-200 http://www.securityfocus.com/bid/65123 http://osvdb.org/102559 https://exchange.xforce.ibmcloud.com/vulnerabilities/90695 http://www.securityfocus.com/archive/1/530879/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/39061/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-1664

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect