Web server vulnerabilities in Cisco Unified MeetingPlace product
CVE-2010-0140

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Meetingplace
Vendor: CVE Published:; 28 January 2010

Summary

Cisco Unified MeetingPlace versions 5, 6, and 7 contain multiple unspecified vulnerabilities in their web server that could be exploited by remote attackers. These vulnerabilities allow attackers to create user or administrator accounts via specially crafted requests directed at the internal interface. The issue is associated with Bug IDs CSCtc59231 and CSCtd40661, highlighting the need for organizations to apply the necessary updates to safeguard against unauthorized access.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/37965

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 28, 2010