TFTP Vulnerability in Cisco TelePresence Endpoint Devices
CVE-2011-0376

Currently unrated

Key Information:

Vendor
Cisco
Status
Telepresence System Software
Telepresence System 1000
Telepresence System 1100
Vendor
CVE Published:
25 February 2011

Summary

The TFTP implementation in Cisco TelePresence endpoint devices from software versions 1.2.x to 1.5.x, as well as 1.6.0 and 1.6.1, is vulnerable to exploitation by remote attackers. By sending a specially crafted GET request, attackers can retrieve sensitive information from these devices, posing significant risks to network security and data confidentiality.

References

http://www.securitytracker.com/id?1025112
vdb-entryx_refsource_SECTRACK
http://www.cisco.com/en/US/products/products_security_adv...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2011-0376 : TFTP Vulnerability in Cisco TelePresence Endpoint Devices | SecurityVulnerability.io