CVE-2015-7322 Information

Description

The Secure Meeting (Pulse Collaboration) in Pulse Connect Secure (formerly Juniper Junos Pulse) before 7.1R22.1 7.4 8.0 before 8.0R11 and 8.1 before 8.1R3 provides different messages for attempts to join a meeting depending on the status of the meeting which allows remote attackers to enumerate valid meeting ids via a series of requests.

Reference

http://www.securitytracker.com/id/1033685 https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40053 https://profundis-labs.com/advisories/CVE-2015-7322.txt