CVE-2014-3304
Cisco WebEx Meetings Server - Unauthenticated User Account Enumeration via OutlookAction Class
Title source: llmDescription
The OutlookAction Class in Cisco WebEx Meetings Server allows remote attackers to enumerate user accounts by entering crafted URLs and examining the returned messages, aka Bug ID CSCuj81722.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030641
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/68911
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3304
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/94880
Scores
EPSS
0.0179
EPSS Percentile
75.8%
Details
CWE
CWE-200
Status
published
Products (1)
cisco/webex_meetings_server
Published
Jul 28, 2014
Tracked Since
Feb 18, 2026