Sign-up

ID

VAR-201312-0284


CVE

CVE-2013-6973


TITLE

Cisco WebEx Training Center Registration in ID Vulnerability to be acquired

Trust: 0.8

sources: JVNDB: JVNDB-2013-005574

DESCRIPTION

Cisco WebEx Training Center allows remote attackers to discover registration IDs via a crafted URL, aka Bug ID CSCul57121. Vendors have confirmed this vulnerability Bug ID CSCul57121 It is released as.Skillfully crafted by a third party URL Register via ID May get you. Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks. This issue is tracked by Cisco Bug ID CSCul57121. The program provides a wealth of tools for online classrooms, online training, and online exams

Trust: 1.98

sources: NVD: CVE-2013-6973 // JVNDB: JVNDB-2013-005574 // BID: 64286 // VULHUB: VHN-66975

AFFECTED PRODUCTS

vendor:ciscomodel:webex training centerscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:webex training centerscope: - version: -

Trust: 0.8

vendor:ciscomodel:webex training centerscope:eqversion:0

Trust: 0.3

sources: BID: 64286 // JVNDB: JVNDB-2013-005574 // CNNVD: CNNVD-201312-283 // NVD: CVE-2013-6973

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2013-6973
value: MEDIUM

Trust: 1.0

NVD: CVE-2013-6973
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201312-283
value: MEDIUM

Trust: 0.6

VULHUB: VHN-66975
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2013-6973
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-66975
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-66975 // JVNDB: JVNDB-2013-005574 // CNNVD: CNNVD-201312-283 // NVD: CVE-2013-6973

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.9

sources: VULHUB: VHN-66975 // JVNDB: JVNDB-2013-005574 // NVD: CVE-2013-6973

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201312-283

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201312-283

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-005574

PATCH
title:Cisco WebEx Training Center Registration ID Exposure Vulnerabilityurl:http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6973
Trust: 0.8
title:32144url:http://tools.cisco.com/security/center/viewAlert.x?alertId=32144
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2013-005574

EXTERNAL IDS
db:NVDid:CVE-2013-6973
Trust: 2.8
db:BIDid:64286
Trust: 1.4
db:SECTRACKid:1029492
Trust: 1.1
db:OSVDBid:100915
Trust: 1.1
db:JVNDBid:JVNDB-2013-005574
Trust: 0.8
db:CNNVDid:CNNVD-201312-283
Trust: 0.7
db:CISCOid:20131212 CISCO WEBEX TRAINING CENTER REGISTRATION ID EXPOSURE VULNERABILITY
Trust: 0.6
db:VULHUBid:VHN-66975
Trust: 0.1
sources:
            
            
            VULHUB: VHN-66975 // 
            
            
            
            BID: 64286 // 
            
            
            
            JVNDB: JVNDB-2013-005574 // 
            
            
            
            CNNVD: CNNVD-201312-283 // 
            
            
            
            NVD: CVE-2013-6973

REFERENCES
url:http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-6973
Trust: 2.0
url:http://tools.cisco.com/security/center/viewalert.x?alertid=32144
Trust: 1.7
url:http://www.securityfocus.com/bid/64286
Trust: 1.1
url:http://osvdb.org/100915
Trust: 1.1
url:http://www.securitytracker.com/id/1029492
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/89651
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-6973
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-6973
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-66975 // 
            
            
            
            BID: 64286 // 
            
            
            
            JVNDB: JVNDB-2013-005574 // 
            
            
            
            CNNVD: CNNVD-201312-283 // 
            
            
            
            NVD: CVE-2013-6973

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 64286

SOURCES
db:VULHUBid:VHN-66975
db:BIDid:64286
db:JVNDBid:JVNDB-2013-005574
db:CNNVDid:CNNVD-201312-283
db:NVDid:CVE-2013-6973

LAST UPDATE DATE
2024-11-23T21:55:29.059000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-66975date:2017-11-29T00:00:00
db:BIDid:64286date:2013-12-12T00:00:00
db:JVNDBid:JVNDB-2013-005574date:2013-12-18T00:00:00
db:CNNVDid:CNNVD-201312-283date:2013-12-17T00:00:00
db:NVDid:CVE-2013-6973date:2024-11-21T02:00:05.313

SOURCES RELEASE DATE
db:VULHUBid:VHN-66975date:2013-12-14T00:00:00
db:BIDid:64286date:2013-12-12T00:00:00
db:JVNDBid:JVNDB-2013-005574date:2013-12-18T00:00:00
db:CNNVDid:CNNVD-201312-283date:2013-12-17T00:00:00
db:NVDid:CVE-2013-6973date:2013-12-14T22:55:14.597