CVE-2014-8035 Information

Description

The web framework in Cisco WebEx Meetings Server produces different returned messages for URL requests depending on whether a username exists which allows remote attackers to enumerate user accounts via a series of requests aka Bug ID CSCuj40247.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8035 http://www.securityfocus.com/bid/71980 https://exchange.xforce.ibmcloud.com/vulnerabilities/100662