CVE-2011-0384
Published Feb 25, 2011
Last updated 7 years ago
Overview
- Description
- The Java Servlet framework on Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug ID CSCtf01253.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-287
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.0.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8AD084A4-0AA0-499F-9D2F-9AD0FC87B0B1"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B862A01F-71E8-412F-AF83-3A64FB7352EC"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "909CA78F-933F-4C79-8F91-D6B17FCD7093"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C885CA7-3DCC-4C05-8945-FBF2CD08EACA"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D000335-5F60-49A8-B642-A5BEDC6A6820"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BBBD9AB4-AC7C-4D3D-AF93-1B9D8AAF31CA"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1B8EF29-8A24-47C7-8108-07B27AF0FDC3"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D99CDCC2-5373-447E-9AB2-DEDB5C6327D9"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "669BF6F3-CE41-43F2-BB6D-E594EB7CFCC7"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.5.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "606E06B8-B00B-4EE1-A763-A62C9105C5E2"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.5.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CECA0482-FD41-46E7-A8F9-54BC665A83FB"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E431D427-EA04-4296-BB23-D638ADA1FF8A"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B70A01B1-CE17-47BF-9035-7168DF790125"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.6.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F0A9D905-3740-4B9D-A26C-DFA6CBD2D154"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.6.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "69F84CF3-ED9D-4962-8930-ACB5319AFF6C"
},
{
"criteria": "cpe:2.3:a:cisco:telepresence_multipoint_switch_software:1.6.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "260AD1B1-D5F3-433D-8B82-DF17197031C4"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:telepresence_multipoint_switch:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2DC3BECB-61EE-4668-B139-D46BCF5E0F69"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]