CVE-2014-3352

Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) 2008.3_SP9 and earlier does not properly consider whether a session is a problematic NULL session, which allows remote attackers to obtain sensitive information via crafted packets, related to an "iFrame vulnerability," aka Bug ID CSCuh84801.

Date published : 2014-08-30

http://www.securityfocus.com/bid/69458

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3352