Cisco uniied MeetingPlace unauthorized password change Vulnerability (CVE-2015-4262)
Cisco uniied MeetingPlace unauthorized password change Vulnerability (CVE-2015-4262)
Release date:
Updated on:
Affected Systems:
Cisco uniied MeetingPlace Web Conferencing
Description:
CVE (CAN) ID: CVE-2015-4262
The Cisco Unified MeetingPlace conferencing solution allows organizations to host integrated voice, video, and web meetings.
The Cisco Unified MeetingPlace Web Conferencing application has a password change vulnerability. unauthenticated remote attackers can exploit this vulnerability to change the password of arbitrary files.
<* Source: Cisco
Link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-mp
*>
Suggestion:
Vendor patch:
Cisco
-----
Cisco has released a Security Bulletin (cisco-sa-20150722-mp) and patches for this:
Cisco-sa-20150722-mp: Cisco uniied MeetingPlace Unauthorized Password Change Vulnerability
Link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-mp
This article permanently updates the link address: