CVE-2014-0651 Information

Description

The administrative interface in Cisco Context Directory Agent (CDA) does not properly enforce authorization requirements which allows remote authenticated users to obtain administrative access by hijacking a session aka Bug ID CSCuj45347.

Reference

http://osvdb.org/101809 http://secunia.com/advisories/56365 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0651 http://tools.cisco.com/security/center/viewAlert.x?alertId=32364 http://www.securityfocus.com/bid/64706 http://www.securitytracker.com/id/1029573 https://exchange.xforce.ibmcloud.com/vulnerabilities/90166