32 matches found
EUVD-2015-0710
Malware in sbrugna...
Cisco TelePresence Integrator C Series Authentication Bypass Vulnerability (CSCuv00604)
Cisco TelePresence Integrator C Series devices running TC Software are prone to an authentication-bypass vulnerability because it fails to sufficiently sanitize the user-supplied input. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources,...
Cisco TelePresence HTTP Response Splitting Vulnerability
A vulnerability in Cisco TelePresence Collaboration Desk and Room Endpoints running TC Software could allow an unauthenticated, remote attacker to conduct HTTP response splitting attacks. The vulnerability is due to insufficient user input sanitization performed by the affected software while...
CVE-2015-0697
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ...
CVE-2015-0696
Cross-site scripting XSS vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuq94977...
Cross site scripting
Cross-site scripting XSS vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuq94977...
Open redirect
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ...
CVE-2015-0696
Cross-site scripting XSS vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuq94977...
CVE-2015-0697
Cisco TelePresence Collaboration Desk/Room Endpoints TC Software versions before 6.3-26 and before 7.3.0 (fixed by Cisco advisories) contain an HTML open-redirect vulnerability in the login page. An unauthenticated, remote attacker could lure a user to a malicious URL, potentially enabling phishi...
CVE-2015-0696
CVE-2015-0696 affects Cisco TelePresence Collaboration Desk and Room Endpoints running TC Software prior to 7.1.0. The login web interface is vulnerable to cross-site scripting due to improper input handling, enabling remote attackers to inject arbitrary script/HTML via unspecified vectors (Bug I...
CVE-2015-0697
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ...
Cisco TelePresence Collaboration Desk and Room Endpoints HTML Redirect Vulnerability
A vulnerability within the login page of the web user interface of Cisco TelePresence Collaboration Desk and Room Endpoints devices running TC Software could allow an unauthenticated, remote attacker to conduct HTML redirection attacks. The vulnerability is due to improper input validation of...
Multiple Cisco TelePresence Products Cross-Site Scripting Vulnerability
A vulnerability within the login page of the web user interface of Cisco TelePresence Collaboration Desk and Room Endpoints devices running TC Software could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper input validation of...
CVE-2014-2170
Cisco TelePresence TC Software 4.x and 5.x before 5.1.7 and 6.x before 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell aka tcsh scripts, aka Bug ID CSCue60202...
CVE-2014-2170
Cisco TelePresence TC Software 4.x and 5.x before 5.1.7 and 6.x before 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell aka tcsh scripts, aka Bug ID CSCue60202...
CVE-2014-2162
CVE-2014-2162 affects Cisco TelePresence TC Software (4.x/5.x) and TE Software (4.x/6.0). The vulnerability stems from the SIP implementation, allowing remote attackers to cause a denial of service (device reload) by sending crafted SIP packets. Several connected advisories (Cisco and third‑party...
CVE-2014-2162
The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service device reload via crafted SIP packets, aka Bug ID CSCud29566...
CVE-2014-2173
Summary: CVE-2014-2173 affects Cisco TelePresence TC Software 4.x/5.x and TE Software 4.x/6.0, where access to the serial port is not properly restricted, enabling local users to gain privileges via unspecified commands (Bug CSCub67692). What’s affected (as stated): Cisco TelePresence TC and TE S...
CVE-2014-2166
CVE-2014-2166 concerns Cisco TelePresence TC/TE Software 4.x where a flaw in the SIP implementation can be triggered by crafted SIP packets, causing a denial of service (device reload). The vulnerability is part of a set of SIP-related DoS issues in the Cisco TelePresence TC/TE software family (B...
CVE-2014-2170
CVE-2014-2170 affects Cisco TelePresence TC Software 4.x/5.x (and TE Software 4.x/6.0) prior to the patched versions 5.1.7 and 6.0.1, respectively. The vulnerability is a command injection via tshell (tcsh) scripts that could allow remote authenticated users to execute arbitrary commands. The iss...