CVE-2010-0140

2010-01-28T20:30:00
ID CVE-2010-0140
Type cve
Reporter cve@mitre.org
Modified 2010-01-31T05:00:00

Description

Multiple unspecified vulnerabilities in the web server in Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.3, and possibly 5 allow remote attackers to create (1) user or (2) administrator accounts via a crafted URL in a request to the internal interface, aka Bug IDs CSCtc59231 and CSCtd40661. Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml

Affected Products Vulnerable Products

Cisco Unified MeetingPlace versions 5, 6, and 7 are each affected by at least one of the vulnerabilities described in this document.