CVE-2013-1169

Cisco Unified MeetingPlace Web Conferencing Server 7.x before 7.1MR1 Patch 2, 8.0 before 8.0MR1 Patch 2, and 8.5 before 8.5MR3 Patch 1, when the Remember Me option is used, does not properly verify cookies, which allows remote attackers to impersonate users via a crafted login request, aka Bug ID CSCuc64846.

Severity	HIGH
CVSS	9.3
CWE	CWE-264
KEV
Published	13 years ago
Modified	2 weeks ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-20130410-mp
Cisco Nexus Dashboard	cisco-sa-20130410-mp
Cisco MATE Collector, Design, Live	cisco-sa-20130410-mp
Cisco Unified MeetingPlace Web Conferencing	cisco-sa-20130410-mp
Cisco Unified MeetingPlace	cisco-sa-20130410-mp