CyberSec.Space Logo
CVEブラウザに戻る

CVE-2011-0354

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0690%
EPSS Percentile44.09th
Published2011年2月3日
Last Modified2026年4月29日

Vulnerability Description

The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4.0.0 has a blank password for the root account, which makes it easier for remote attackers to obtain access via an unspecified login method.

Affected Platforms (CPE)

📦
Cisco

Tandberg Endpoint

<= tc3.1.3
📦
Cisco

Tandberg Endpoint

= tc2.1.2
📦
Cisco

Tandberg Endpoint

= tc3.0.0
📦
Cisco

Tandberg Endpoint

= tc3.1.0
📦
Cisco

Tandberg Endpoint

= tc3.1.1
📦
Cisco

Tandberg Endpoint

= tc3.1.2
🔌
Cisco

Tandberg Endpoint

= c20
🔌
Cisco

Tandberg Endpoint

= c40
🔌
Cisco

Tandberg Endpoint

= c60
🔌
Cisco

Tandberg Endpoint

= c90
📦
Cisco

Tandberg Personal Video Unit Software

<= tc3.1.3
📦
Cisco

Tandberg Personal Video Unit Software

= tc3.1.0
📦
Cisco

Tandberg Personal Video Unit Software

= tc3.1.1
📦
Cisco

Tandberg Personal Video Unit Software

= tc3.1.2
🔌
Cisco

Tandberg Personal Video Unit

= ex90
📦
Cisco

Tandberg Personal Video Unit Software

<= te2.2.1
📦
Cisco

Tandberg Personal Video Unit Software

= te1.0.1
📦
Cisco

Tandberg Personal Video Unit Software

= te2.2.0
🔌
Cisco

Tandberg Personal Video Unit

= e20
🔌
Cisco

Tandberg Personal Video Unit

= ex60

References & Advisories

🔗 http://secunia.com/advisories/43158
🔗 http://securityreason.com/securityalert/8060
🔗 http://securitytracker.com/id?1025017
🔗 http://tools.cisco.com/security/center/viewAlert.x?alertId=22314
🔗 http://www.cisco.com/en/US/products/ps11422/products_security_advisory09186a0080b69541.shtml
🔗 http://www.exploit-db.com/exploits/16100
🔗 http://www.kb.cert.org/vuls/id/436854
🔗 http://www.securityfocus.com/bid/46107

関連する脆弱性情報

CVE-2011-007710.0

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before...

CVE-2011-007410.0

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before...

CVE-2011-262810.0

Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to execute arbitrary code or cause...

CVE-2011-112710.0

SSI.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not properly restrict guest access, which allow...