Remote Code Execution Vulnerability in Cisco TelePresence Products
CVE-2011-0385

Currently unrated

Key Information:

Vendor: Cisco
Status: Telepresence Recording Server Software; Telepresence Recording Server
Vendor: CVE Published:; 25 February 2011

What is CVE-2011-0385?

The administrative web interface of Cisco TelePresence Recording Server and Multipoint Switch devices is susceptible to file upload vulnerabilities. Attackers can craft specific requests to create or overwrite files on the device, potentially leading to unauthorized execution of code. This vulnerability poses a significant risk to the integrity and security of the affected systems.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/65604

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1025114

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 25, 2011
Vulnerability Reserved
Jan 7, 2011