CVE-2009-0614
First published: Thu Feb 26 2009(Updated: )
Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote attackers to bypass authentication and obtain administrative access via a crafted URL.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified MeetingPlace | >=6.0\(171\)<6.0\(517.0\) | |
| Cisco Unified MeetingPlace | >=7.0\(1\)<7.0\(2\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-0614?
CVE-2009-0614 is considered a moderate severity vulnerability due to its potential to allow remote attackers to gain administrative access.
How do I fix CVE-2009-0614?
To mitigate CVE-2009-0614, upgrade Cisco Unified MeetingPlace Web Conferencing to version 6.0(517.0) or 7.0(2) or later.
What types of systems are affected by CVE-2009-0614?
CVE-2009-0614 affects Cisco Unified MeetingPlace Web Conferencing versions prior to 6.0(517.0) and 7.0(2).
Can CVE-2009-0614 be exploited remotely?
Yes, CVE-2009-0614 allows remote attackers to exploit the vulnerability through a crafted URL to bypass authentication.
What is the impact of CVE-2009-0614 on security?
The impact of CVE-2009-0614 is significant, as it can lead to unauthorized administrative access to the conferencing system.
- agent/type
- agent/event
- agent/author
- agent/softwarecombine
- agent/last-modified-date
- agent/references
- agent/description
- agent/weakness
- agent/severity
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/cisco
- canonical/cisco unified meetingplace
- version/cisco unified meetingplace/6.0\(171\)
- version/cisco unified meetingplace/7.0\(1\)