Remote Code Execution Vulnerability in Cisco TelePresence Immersive Endpoint Devices
CVE-2012-3074

Currently unrated

Key Information:

Vendor
Cisco
Status
Telepresence System Software
Telepresence System 1300 65
Telepresence System 3000
Telepresence System 3010
Vendor
CVE Published:
12 July 2012

Summary

An unspecified API vulnerability in Cisco TelePresence Immersive Endpoint Devices prior to version 1.9.1 allows remote attackers to execute arbitrary commands. This can be achieved by exploiting certain adjacency and sending a malformed request on TCP port 61460. The vulnerability poses significant risks to network security, as it may allow unauthorized access and manipulation of system functions.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.