3 matches found
Unrestricted file upload
Unrestricted file upload vulnerability in the Custom Prompts upload implementation in Cisco Unified MeetingPlace 8.61.9 allows remote authenticated users to execute arbitrary code by using the languageShortName parameter to upload a file that provides shell access, aka Bug ID CSCus95712...
Cisco Unified MeetingPlace Custom Prompts Arbitrary File Upload Vulnerability
Cisco Unified MeetingPlace is the United States Cisco Cisco company's set of multimedia conferencing solutions. The solution provides a user environment that integrates voice, video and Web conferencing. An arbitrary file upload vulnerability exists in the Custom Prompts upload implementation in...
Cisco Unified MeetingPlace Custom Prompts languageShortName Parameter Arbitrary Code Execution Vulnerability
A vulnerability in the languageShortName parameter of the Custom Prompts upload feature of Cisco Unified MeetingPlace could allow an authenticated, remote attacker to execute arbitrary code. The vulnerability is due to insufficient validation of input parameters by an affected system. An attacker...