CVE-2011-0354
published 2011-02-03CVE-2011-0354: The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4.0.0 has a blank password…
PriorityP275critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
13.99%
96.1th percentile
The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4.0.0 has a blank password for the root account, which makes it easier for remote attackers to obtain access via an unspecified login method.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | tandberg_endpoint | <= tc3.1.3 | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_endpoint | — | — |
| cisco | tandberg_personal_video_unit | — | — |
| cisco | tandberg_personal_video_unit | — | — |
| cisco | tandberg_personal_video_unit | — | — |
| cisco | tandberg_personal_video_unit_software | <= tc3.1.3 | — |
| cisco | tandberg_personal_video_unit_software | <= te2.2.1 | — |
| cisco | tandberg_personal_video_unit_software | — | — |
| cisco | tandberg_personal_video_unit_software | — | — |
| cisco | tandberg_personal_video_unit_software | — | — |
| cisco | tandberg_personal_video_unit_software | — | — |
| cisco | tandberg_personal_video_unit_software | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated root login attempts against Cisco Tandberg C/E/EX series endpoints running software prior to TC4.0.0 — the root account has a blank password by default and is accessible remotely. ↗
- →Monitor for use of the 'xStatus SystemUnit' API command against Tandberg devices, which can be used to fingerprint vulnerable software versions (prior to TC4.0.0) before exploitation. ↗
- →Alert on 'systemtools rootsettings' commands issued on Tandberg devices, as this is the specific API used to enable/disable the root account and may indicate post-exploitation activity. ↗
- →Affected codecs include C20, C40, C60, C90, E20, EX60, and EX90 — enumerate these device types on the network and verify software version is TC4.0.0 or later. ↗
- ·The root account is NOT the same as the admin or user accounts — it is a separate privileged account enabled for advanced debugging and is active with no password in all versions prior to TC4.0.0. ↗
- ·On devices running software PRIOR to TC4.0.0, the root account cannot be disabled — only its password can be set (it mirrors the administrator password). Full remediation requires upgrade to TC4.0.0. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Default Credentials for Root Account on Tandberg E, EX and C Series Endpoints
vendor_cisco
CVE-2011-0354 Default Credentials for Root Account on Tandberg E, EX and C Series Endpoints
CVE-2011-0354: Default Credentials for Root Account on Tandberg E, EX and C Series Endpoints
Tandberg C Series Endpoints and E/EX Personal Video units that are running software versions prior to TC4.0.0 ship with a root administrator account that is enabled by default with no password. An attacker could use this account in order to modify the application configuration or operating system settings. Resolving this default password issue does not require a software upgrade and can be changed or disabled by a configuration command for all affected customers. The workaround detailed in this document demonstrates how to disable the root account or change the password. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110202-tandbe
GHSA
GHSA-xh4x-ff3x-6rcx: The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4
ghsa_unreviewed·2022-05-17
CVE-2011-0354 [HIGH] GHSA-xh4x-ff3x-6rcx: The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4
The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4.0.0 has a blank password for the root account, which makes it easier for remote attackers to obtain access via an unspecified login method.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/43158http://securityreason.com/securityalert/8060http://securitytracker.com/id?1025017http://tools.cisco.com/security/center/viewAlert.x?alertId=22314http://www.cisco.com/en/US/products/ps11422/products_security_advisory09186a0080b69541.shtmlhttp://www.exploit-db.com/exploits/16100http://www.kb.cert.org/vuls/id/436854http://www.securityfocus.com/bid/46107http://secunia.com/advisories/43158http://securityreason.com/securityalert/8060http://securitytracker.com/id?1025017http://tools.cisco.com/security/center/viewAlert.x?alertId=22314http://www.cisco.com/en/US/products/ps11422/products_security_advisory09186a0080b69541.shtmlhttp://www.exploit-db.com/exploits/16100http://www.kb.cert.org/vuls/id/436854http://www.securityfocus.com/bid/46107
2011-02-03
Published