Cisco TelePresence System Integrator C Series and EX Series Root Authentication Bypass Vulnerability
BID:50611
Info
Cisco TelePresence System Integrator C Series and EX Series Root Authentication Bypass Vulnerability
| Bugtraq ID: | 50611 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 09 2011 12:00AM |
| Updated: | Nov 09 2011 12:00AM |
| Credit: | Cisco |
| Vulnerable: |
Cisco TelePresence System Integrator C Series TC4.2 Cisco TelePresence System Integrator C Series TC4.1 Cisco TelePresence System Integrator C Series TC4.0 Cisco TelePresence Quick Set TC4.2 Cisco TelePresence Quick Set TC4.1 Cisco TelePresence Quick Set TC4.0 Cisco TelePresence EX Series TC4.2 Cisco TelePresence EX Series TC4.1 Cisco TelePresence EX Series TC4.0 |
| Not Vulnerable: | |
Discussion
Cisco TelePresence System Integrator C Series and EX Series Root Authentication Bypass Vulnerability
Cisco TelePresence System Integrator C Series and TelePresence EX Series devices are prone to a remote authentication-bypass vulnerability.
An attacker can exploit this issue to gain unauthorized administrative access to the affected device. Successful exploits will result in the complete compromise of the affected device.
Cisco TelePresence System Integrator C Series and TelePresence EX Series devices are prone to a remote authentication-bypass vulnerability.
An attacker can exploit this issue to gain unauthorized administrative access to the affected device. Successful exploits will result in the complete compromise of the affected device.
Exploit / POC
Cisco TelePresence System Integrator C Series and EX Series Root Authentication Bypass Vulnerability
Attackers can use readily available tools to exploit this issue.
Attackers can use readily available tools to exploit this issue.
Solution / Fix
Cisco TelePresence System Integrator C Series and EX Series Root Authentication Bypass Vulnerability
Solution:
The vendor has released an advisory along with fixes. Please see the referenced advisory for details.
Solution:
The vendor has released an advisory along with fixes. Please see the referenced advisory for details.
References
Cisco TelePresence System Integrator C Series and EX Series Root Authentication Bypass Vulnerability
References:
References:
- Cisco TelePresence System EX Series Homepage (Cisco)
- Cisco Telepresence System Integrator C Series Homepage (Cisco)
- Cisco Security Advisory: Cisco TelePresence System Integrator C Series and Cisco ([email protected])
- Cisco TelePresence System Integrator C Series and Cisco TelePresence EX Series D (Cisco)