Arbitrary Code Execution via Malformed XML-RPC Request on Cisco TelePresence Recording Server (Bug ID CSCti50739)

CVE-2011-0386 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The XML-RPC implementation on Cisco TelePresence Recording Server devices with software 1.6.x and 1.7.x before 1.7.1 allows remote attackers to overwrite files and consequently execute arbitrary code via a malformed request, aka Bug ID CSCti50739.

Learn more about our Cis Benchmark Audit For Cisco.