CVE-2013-6965 Information

Description

The registration component in Cisco WebEx Training Center provides the training-session URL before e-mail confirmation is completed which allows remote attackers to bypass intended access restrictions and join an audio conference by entering credential fields from this URL aka Bug ID CSCul36183.

Reference

http://osvdb.org/100911 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6965 http://tools.cisco.com/security/center/viewAlert.x?alertId=32157 http://www.securityfocus.com/bid/64281 http://www.securitytracker.com/id/1029492 https://exchange.xforce.ibmcloud.com/vulnerabilities/89691