PT-2012-1939 · Cisco · Cisco Telepresence

Published

2012-01-19

Updated

2012-02-10

CVE-2011-4659

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Cisco TelePresence Software versions prior to 4.1.1

Description The issue is related to a default password for the root account after an upgrade to version 4.1.0, which allows remote attackers to modify the configuration via an SSH session.

Recommendations For versions prior to 4.1.1, update to version 4.1.1 or later to resolve the issue. As a temporary workaround, consider changing the default password for the root account to prevent unauthorized access.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2011-4659

Affected Products

Cisco Telepresence

PT-2012-1939 · Cisco · Cisco Telepresence

CVE-2011-4659

Weakness Enumeration

Related Identifiers

Affected Products

References · 2