Arbitrary Command Execution in Cisco TelePresence TC and TE Software (CSCue60202)

Arbitrary Command Execution in Cisco TelePresence TC and TE Software (CSCue60202)

CVE-2014-2170 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

Cisco TelePresence TC Software 4.x and 5.x before 5.1.7 and 6.x before 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell (aka tcsh) scripts, aka Bug ID CSCue60202.

Learn more about our User Device Pen Test.