CVE-2011-0382
published 2011-02-25CVE-2011-0382: The CGI subsystem on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 allows remote attackers to execute arbitrary commands via a…
PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
4.19%
89.7th percentile
The CGI subsystem on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 allows remote attackers to execute arbitrary commands via a request to TCP port 443, related to a "command injection vulnerability," aka Bug ID CSCtf97221.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | telepresence_recording_server | — | — |
| cisco | telepresence_recording_server_software | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor for unexpected command execution originating from CGI subsystem requests on TCP port 443 on Cisco TelePresence Recording Server devices running software version 1.6.x before 1.6.2. ↗
- →Correlate findings against Cisco Bug IDs CSCtf42008, CSCtf42005, CSCth61065, CSCth85786, CSCtd75754 for related vulnerabilities on the same platform (CWE-264, CWE-287, CWE-399). ↗
- ·Vulnerability is specific to Cisco TelePresence Recording Server software versions 1.6.x prior to 1.6.2. Devices running 1.6.2 or later are not affected by this specific command injection issue. ↗
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco10.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Multiple Vulnerabilities in Cisco TelePresence Recording Server
vendor_cisco·2011-02-23·CVSS 10.0
CVE-2011-0382 [CRITICAL] CWE-264 Multiple Vulnerabilities in Cisco TelePresence Recording Server
Multiple Vulnerabilities in Cisco TelePresence Recording Server
Multiple vulnerabilities exist within the Cisco TelePresence Recording
Server. This security advisory outlines details of the following
vulnerabilities:
Unauthenticated Java Servlet Access
Common Gateway Interface (CGI) Command Injection
Unauthenticated Arbitrary File Upload
XML-Remote Procedure Call (RPC) Arbitrary File Overwrite
Cisco Discovery Protocol Remote Code Execution
Ad Hoc Recording Denial of Service
Java Remote method Invocation (RMI) Denial of Service
Unauthenticated XML-RPC Interface
Duplicate Issue Identification in Other Cisco TelePresence Advisories
The Unauthenticated Java Servlet Access vulnerability affects the Cisco
TelePresence Multipoint Switch and Recording Server. The defect that is r
Cisco
Multiple Vulnerabilities in Cisco TelePresence Recording Server
vendor_cisco
CVE-2011-0382 Multiple Vulnerabilities in Cisco TelePresence Recording Server
CVE-2011-0382: Multiple Vulnerabilities in Cisco TelePresence Recording Server
Multiple vulnerabilities exist within the Cisco TelePresence Recording Server. This security advisory outlines
CWE: CWE-264, CWE-287, CWE-399, CWE-264, CWE-287, CWE-399
Bug IDs: CSCtf42008, CSCtf42005, CSCth61065, CSCth85786, CSCtd75754
GHSA
GHSA-723c-85j6-84g2: The CGI subsystem on Cisco TelePresence Recording Server devices with software 1
ghsa_unreviewed·2022-05-17
CVE-2011-0382 [HIGH] CWE-78 GHSA-723c-85j6-84g2: The CGI subsystem on Cisco TelePresence Recording Server devices with software 1
The CGI subsystem on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 allows remote attackers to execute arbitrary commands via a request to TCP port 443, related to a "command injection vulnerability," aka Bug ID CSCtf97221.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e11d.shtmlhttp://www.securityfocus.com/bid/46522http://www.securitytracker.com/id?1025114http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e11d.shtmlhttp://www.securityfocus.com/bid/46522http://www.securitytracker.com/id?1025114
2011-02-25
Published