CVE-2011-0383
CRITICAL
10.0
CVSS Severity Score
Vulnerability Description
The Java Servlet framework on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug IDs CSCtf42005 and CSCtf42008.
Affected Platforms (CPE)
📦
Cisco
Telepresence Recording Server Software
= 1.6.1🔌
Cisco
Telepresence Recording Server
All versions📦
Cisco
Telepresence Multipoint Switch Software
= 1.0.4.0📦
Cisco
Telepresence Multipoint Switch Software
= 1.1.0📦
Cisco
Telepresence Multipoint Switch Software
= 1.1.1📦
Cisco
Telepresence Multipoint Switch Software
= 1.1.2📦
Cisco
Telepresence Multipoint Switch Software
= 1.5.0📦
Cisco
Telepresence Multipoint Switch Software
= 1.5.1📦
Cisco
Telepresence Multipoint Switch Software
= 1.5.2📦
Cisco
Telepresence Multipoint Switch Software
= 1.5.3📦
Cisco
Telepresence Multipoint Switch Software
= 1.5.4📦
Cisco
Telepresence Multipoint Switch Software
= 1.5.5📦
Cisco
Telepresence Multipoint Switch Software
= 1.5.6📦
Cisco
Telepresence Multipoint Switch Software
= 1.6.0📦
Cisco
Telepresence Multipoint Switch Software
= 1.6.1📦
Cisco
Telepresence Multipoint Switch Software
= 1.6.2📦
Cisco
Telepresence Multipoint Switch Software
= 1.6.3📦
Cisco
Telepresence Multipoint Switch Software
= 1.6.4🔌
Cisco