MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote attackers to discover usernames, passwords, and unspecified other data from the user database via a modified authentication sequence to the Audio Server, aka Bug ID CSCsv76935.
http://www.securityfocus.com/bid/37965
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml