Lucene search
CiscoCVELIST:CVE-2011-0383HistoryFeb 25, 2011 - 11:00 a.m.
CVE-2011-0383
2011-02-2511:00:00
cisco
www.cve.org
2
The Java Servlet framework on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug IDs CSCtf42005 and CSCtf42008.
References
www.cisco.com/en/US/products/products_security_advisory09186a0080b6e11d.shtml
www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14e.shtml
www.securityfocus.com/bid/46519
www.securitytracker.com/id?1025113
www.securitytracker.com/id?1025114
exchange.xforce.ibmcloud.com/vulnerabilities/65602
Related
prion
prion
Design/Logic Flaw
2011-02-25 12:00:00
cve
cve
CVE-2011-0383
2011-02-25 12:00:18
nvd
nvd
CVE-2011-0383
2011-02-25 12:00:18
nessus
nessus
cisco
cisco
Multiple Vulnerabilities in Cisco TelePresence Recording Server
2011-02-23 16:00:00
securityvulns
securityvulns