CVE-2014-8015 Information

Description

The Sponsor Portal in Cisco Identity Services Engine (ISE) allows remote authenticated users to obtain access to an arbitrary sponsor’s guest account via a modified HTTP request aka Bug ID CSCur64400.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8015 http://www.securitytracker.com/id/1031423