Cisco TelePresence System Default Credentials Vulnerability

Last Update Date: 8 Aug 2013 10:02 Release Date: 8 Aug 2013 3832 Views

RISK: High Risk

High Risk

TYPE: Clients - Im, Chat & Voip

TYPE: Im, Chat & Voip

A vulnerability has been identified in Cisco TelePresence. A remote user can gain full control of the target system.

 

The web server contains an administrative user account with default credentials. A remote user can access the system using these authentication credentials.

 

Note: Vendor patch is currently unavailable.

Impact

  • Remote Code Execution
  • Security Restriction Bypass

System / Technologies affected

  • Cisco TelePresence System Series 500, 13X0, 1X00, 3X00, and 30X0 devices running CiscoTelePresence System Software Releases 1.10.1 and prior
  • Cisco TelePresence TX 9X00 Series devices running Cisco TelePresence System Software Releases 6.0.3 and prior

Solutions

Vulnerability Identifier

Source

Related Link

Share with

Previous

PuTTY Multiple Vulnerabilities

6 Aug 2013 3902 Views

Next

Tor Browser Bundle "onreadystatechange" Event Handling Code Execution Vulnerability

7 Aug 2013 3868 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY