Cisco TelePresence Multiple Products Remote Command Injection Vulnerability (CVE-2015-0713)
Cisco TelePresence Multiple Products Remote Command Injection Vulnerability (CVE-2015-0713)
Release date:
Updated on:
Affected Systems:
Cisco TelePresence Server
Description:
Bugtraq id: 74638
CVE (CAN) ID: CVE-2015-0713
Cisco TelePresence is a Cisco TelePresence solution that provides ultra-high-definition video images (1080 p) in real size, CD-quality audio, specially designed environments, and interactive components, this provides a "face-to-face" meeting experience for remote participants.
Multiple Cisco TelePresence products have the remote command injection vulnerability. After successful exploitation, attackers can execute arbitrary commands in the context of the affected device with root privileges.
<* Source: Cisco
*>
Suggestion:
Vendor patch:
Cisco
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://tools.cisco.com/security/center/publicationListing.x #~ CiscoSecurityResponse
This article permanently updates the link address: