) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:h:cisco:telepresence_system_1000:-:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2014-0661 |
The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote attackers to execute arbitrary commands or cause a denial of service (stack memory corruption) via a crafted XML-RPC message, aka Bug ID CSCui32796. Published: January 22, 2014; 4:55:03 PM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 8.3 HIGH |
| CVE-2011-0379 |
Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x; and Cisco TelePresence Manager 1.2.x, 1.3.x, 1.4.x, 1.5.x, and 1.6.2 allows remote attackers to execute arbitrary code via a crafted Cisco Discovery Protocol packet, aka Bug IDs CSCtd75769, CSCtd75766, CSCtd75754, and CSCtd75761. Published: February 25, 2011; 7:00:18 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 7.9 HIGH |
| CVE-2011-0378 |
The XML-RPC implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a TCP request, related to a "command injection vulnerability," aka Bug ID CSCtb52587. Published: February 25, 2011; 7:00:18 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 8.3 HIGH |
| CVE-2011-0377 |
Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allow remote attackers to cause a denial of service (service crash) via a malformed SOAP request in conjunction with a spoofed TelePresence Manager that supplies an invalid IP address, aka Bug ID CSCth03605. Published: February 25, 2011; 7:00:18 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 7.8 HIGH |
| CVE-2011-0376 |
The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers to obtain sensitive information via a GET request, aka Bug ID CSCte43876. Published: February 25, 2011; 7:00:18 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2011-0375 |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCth24671. Published: February 25, 2011; 7:00:18 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 9.0 HIGH |
| CVE-2011-0374 |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31659. Published: February 25, 2011; 7:00:17 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 9.0 HIGH |
| CVE-2011-0373 |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31685. Published: February 25, 2011; 7:00:17 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 9.0 HIGH |
| CVE-2011-0372 |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640. Published: February 25, 2011; 7:00:01 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 10.0 HIGH |