https://www.exploit-db.com/exploits/22381
https://cxsecurity.com/issue/WLB-2008030073

This vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.

source: http://www.securityfocus.com/bid/7134/info

It has been reported that authentication is not required to view user account information. As a result, an unauthorized remote attacker may be able to view potentially sensitive information. This may aid in launching further attacks against a target user or system.

http://www.example.com/[sips_directory]/sipssys/users/[first_letter_of_UserID]/

resource:
hyperlink:http://securityreason.com/securityalert/3780
resource:Exploit
hyperlink:http://www.securityfocus.com/archive/1/archive/1/315504/30/25460/threaded
resource:Exploit
hyperlink:http://www.securityfocus.com/bid/7134
resource:
hyperlink:https://exchange.xforce.ibmcloud.com/vulnerabilities/11572