CVE-2014-3286 Information

Description

The web framework in Cisco WebEx Meeting Server does not properly restrict the content of reply messages which allows remote attackers to obtain sensitive information via a crafted URL aka Bug IDs CSCuj81685 CSCuj81688 CSCuj81665 CSCuj81744 and CSCuj81661.

Reference

http://secunia.com/advisories/58571 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3286 http://www.securityfocus.com/bid/67922