CVE-2011-0385

The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote attackers to create or overwrite arbitrary files, and possibly execute arbitrary code, via a crafted request, aka Bug IDs CSCth85786 and CSCth61065.

Published: Feb 25, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-0385
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cisco / telepresence_recording_server_software	1.6.1	1.6.1.x
cisco / telepresence_recording_server_software	1.6.2	1.6.2.x
cisco / telepresence_recording_server_software	1.6.3	1.6.3.x
cisco / telepresence_recording_server	-	-
cisco / telepresence_multipoint_switch_software	1.0.4.0	1.0.4.0.x
cisco / telepresence_multipoint_switch_software	1.1.0	1.1.0.x
cisco / telepresence_multipoint_switch_software	1.1.1	1.1.1.x
cisco / telepresence_multipoint_switch_software	1.1.2	1.1.2.x
cisco / telepresence_multipoint_switch_software	1.5.0	1.5.0.x
cisco / telepresence_multipoint_switch_software	1.5.1	1.5.1.x
cisco / telepresence_multipoint_switch_software	1.5.2	1.5.2.x
cisco / telepresence_multipoint_switch_software	1.5.3	1.5.3.x
cisco / telepresence_multipoint_switch_software	1.5.4	1.5.4.x
cisco / telepresence_multipoint_switch_software	1.5.5	1.5.5.x
cisco / telepresence_multipoint_switch_software	1.5.6	1.5.6.x
cisco / telepresence_multipoint_switch_software	1.6.0	1.6.0.x
cisco / telepresence_multipoint_switch_software	1.6.1	1.6.1.x
cisco / telepresence_multipoint_switch_software	1.6.2	1.6.2.x
cisco / telepresence_multipoint_switch_software	1.6.3	1.6.3.x
cisco / telepresence_multipoint_switch_software	1.6.4	1.6.4.x
cisco / telepresence_multipoint_switch	-	-

Vulnerability Database

289,697

CVE-2011-0385