Cisco Unified MeetingPlace XML Processing Information Disclosure (CSCus97452)

medium Nessus Plugin ID 84193

Language:

Synopsis

The remote web server is running a conferencing application that is affected by an information disclosure vulnerability.

Description

According to its self-reported version number, the Cisco Unified MeetingPlace application hosted on the remote web server is potentially affected by an information disclosure vulnerability due to improper handling of XML external entities (XXEs). An authenticated, remote attacker can exploit this vulnerability, by convincing a MeetingPlace administrator to import a specially crafted XML file, to disclose sensitive information stored in files on the affected system.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Additionally, the coarse nature of the version information Nessus gathered is not enough to confirm that the application is vulnerable, only that it might be affected.

Solution

Upgrade to the relevant fixed version referenced in Cisco bug ID CSCus97452.

Plugin Details

Severity: Medium

ID: 84193

File Name: cisco-CSCus97452-mp.nasl

Version: 1.8

Type: remote

Family: CISCO

Published: 6/15/2015

Updated: 6/4/2024

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Enable CGI Scanning: true

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 4

Temporal Score: 3

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS Score Source: CVE-2015-0758

Vulnerability Information

CPE: cpe:/a:cisco:unified_meetingplace

Required KB Items: Settings/ParanoidReport, installed_sw/Cisco Unified MeetingPlace

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Ease: No known exploits are available

Patch Publication Date: 5/30/2015

Vulnerability Publication Date: 5/29/2015

Reference Information

CVE: CVE-2015-0758

BID: 74922

CISCO-BUG-ID: CSCus97452

Detections

Analytics