Arbitrary File Creation and Code Execution Vulnerability in Cisco TelePresence Recording Server and Cisco TelePresence Multipoint Switch

Arbitrary File Creation and Code Execution Vulnerability in Cisco TelePresence Recording Server and Cisco TelePresence Multipoint Switch

CVE-2011-0385 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote attackers to create or overwrite arbitrary files, and possibly execute arbitrary code, via a crafted request, aka Bug IDs CSCth85786 and CSCth61065.

Learn more about our Cis Benchmark Audit For Cisco.