BID:69456

Cisco Intelligent Automation for Cloud CVE-2014-3351 Remote Information Disclosure Vulnerability

CVE-2014-3351 |

Info

Cisco Intelligent Automation for Cloud CVE-2014-3351 Remote Information Disclosure Vulnerability

Bugtraq ID:	69456
Class:	Design Error
CVE:	CVE-2014-3351
Remote:	Yes
Local:	No
Published:	Aug 28 2014 12:00AM
Updated:	Sep 01 2014 12:04AM
Credit:	Cisco
Vulnerable:

Not Vulnerable:

Discussion

Cisco Intelligent Automation for Cloud CVE-2014-3351 Remote Information Disclosure Vulnerability

Cisco Intelligent Automation for Cloud is prone to an information-disclosure vulnerability.

Attackers can exploit this issue to retrieve sensitive information. Information harvested may aid in launching further attacks.

This issue is tracked by Cisco Bug IDs CSCuh87398 and CSCuh87380.

Exploit / POC

Cisco Intelligent Automation for Cloud CVE-2014-3351 Remote Information Disclosure Vulnerability

Attackers can exploit this issue using readily available tools.

Solution / Fix

Cisco Intelligent Automation for Cloud CVE-2014-3351 Remote Information Disclosure Vulnerability

Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].

References

Cisco Intelligent Automation for Cloud CVE-2014-3351 Remote Information Disclosure Vulnerability

References:

Cisco Homepage (Cisco)