TFTP Vulnerability in Cisco TelePresence Endpoint Devices
CVE-2011-0376

Currently unrated

Key Information:

Vendor

Cisco
Status
Telepresence System Software
Telepresence System 1000
Telepresence System 1100
Vendor
CVE Published:
25 February 2011

What is CVE-2011-0376?

The TFTP implementation in Cisco TelePresence endpoint devices from software versions 1.2.x to 1.5.x, as well as 1.6.0 and 1.6.1, is vulnerable to exploitation by remote attackers. By sending a specially crafted GET request, attackers can retrieve sensitive information from these devices, posing significant risks to network security and data confidentiality.

References

http://www.securitytracker.com/id?1025112
vdb-entryx_refsource_SECTRACK
http://www.cisco.com/en/US/products/products_security_adv...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.