2 matches found
CVE-2010-0214
The CVE-2010-0214 issue affects PolyVision RoomWizard firmware 3.2.3. The administrative web interface serves Sync Connector Active Directory credentials in plaintext within a web page accessible over HTTP (port 80), specifically via the /admin/sign/DeviceSynch URI, allowing remote attackers with...
CVE-2011-0423
CVE-2011-0423 affects PolyVision RoomWizard devices running firmware 3.2.3. The issue is a default administrator password (roomwizard) that enables remote attackers to obtain console access via HTTP session. The vulnerability is separate from CVE-2010-0214, which concerns credentials exposed in a...