exploitDog

CVE-2010-0141

Опубликовано: 28 янв. 2010

Источник: nvd

CVSS2: 6.4

EPSS Низкий

Описание

MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote attackers to discover usernames, passwords, and unspecified other data from the user database via a modified authentication sequence to the Audio Server, aka Bug ID CSCsv76935.

Ссылки

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml
Patch
Vendor Advisory
http://www.securityfocus.com/bid/37965
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml
Patch
Vendor Advisory
http://www.securityfocus.com/bid/37965

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:unified_meetingplace:6.0:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_meetingplace:6.0.170.0:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_meetingplace:6.0.244:*:*:*:*:*:*:*

EPSS

Процентиль: 50%

0.00274

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-255

Связанные уязвимости

GHSA-67cg-hqpj-xmm9

github

почти 4 года назад

MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote attackers to discover usernames, passwords, and unspecified other data from the user database via a modified authentication sequence to the Audio Server, aka Bug ID CSCsv76935.

EPSS

Процентиль: 50%

0.00274

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-255