CVE-2011-4659
published 2012-01-19CVE-2011-4659: Cisco TelePresence Software before TE 4.1.1 on the Cisco IP Video Phone E20 has a default password for the root account after an upgrade to TE 4.1.0, which…
PriorityP344critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
2.07%
79.1th percentile
Cisco TelePresence Software before TE 4.1.1 on the Cisco IP Video Phone E20 has a default password for the root account after an upgrade to TE 4.1.0, which makes it easier for remote attackers to modify the configuration via an SSH session, aka Bug ID CSCtw69889, a different vulnerability than CVE-2011-2555.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ip_video_phone_e20_default_root_account | — | — |
| cisco | telepresence_e20_software | <= te4.1.1-cucm | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
| cisco | telepresence_e20_software | — | — |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco10.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco IP Video Phone E20 Default Root Account
vendor_cisco·2012-01-18·CVSS 10.0
CVE-2011-4659 [CRITICAL] Cisco IP Video Phone E20 Default Root Account
Cisco IP Video Phone E20 Default Root Account
Cisco TelePresence Software version TE 4.1.0 contains a default account vulnerability that could allow an unauthenticated, remote attacker to take complete control of the affected device.
The vulnerability is due to an architectural change that was made in the way the system maintains administrative accounts. During the process of upgrading a Cisco IP Video Phone E20 device to TE 4.1.0, an unsecured default account may be introduced. An attacker who is able to take advantage of this vulnerability could log in to the device as the root user and perform arbitrary actions with elevated privileges.
Cisco has released software updates that address this vulnerability.
Workarounds that mitigate this vulnerability are available.
This advisory
Cisco
Cisco IP Video Phone E20 Default Root Account
vendor_cisco
CVE-2011-4659 Cisco IP Video Phone E20 Default Root Account
CVE-2011-4659: Cisco IP Video Phone E20 Default Root Account
Cisco TelePresence Software version TE 4.1.0 contains a default account vulnerability that could allow an unauthenticated, remote attacker to take complete control of the affected device. The vulnerability is due to an architectural change that was made in the way the system maintains administrative accounts. During the process of upgrading a Cisco IP Video Phone E20 device to TE 4.1.0, an unsecured default account may be introduced. An attacker who is able to take advantage of this vulnerability could log in to the device as the root user and perform arbitrary actions with elevated privileges. Cisco has released software updates that address this vulnerability.
Bug IDs: CSCtw69889, CSCtw69889
GHSA
GHSA-8hc9-7v2m-wf28: Cisco TelePresence Software before TE 4
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2011-4659 [CRITICAL] GHSA-8hc9-7v2m-wf28: Cisco TelePresence Software before TE 4
Cisco TelePresence Software before TE 4.1.1 on the Cisco IP Video Phone E20 has a default password for the root account after an upgrade to TE 4.1.0, which makes it easier for remote attackers to modify the configuration via an SSH session, aka Bug ID CSCtw69889, a different vulnerability than CVE-2011-2555.
No detection rules found.
Exploit-DB
ClickHeat 1.14 - Cross-Site Request Forgery (Change Admin Password)
exploitdb·2015-06-12
CVE-2015-4659 ClickHeat 1.14 - Cross-Site Request Forgery (Change Admin Password)
ClickHeat 1.14 - Cross-Site Request Forgery (Change Admin Password)
---
# Exploit Title: ClickHeat
/* CODE */
---- Solution ----
The ClickHeat project seems to be dead, as it has not been updated since
late 2011. Due to this, I truly doubt a patch will be issued so I would
recommend removing this product from your website.
Exploit-DB
AVID Media Composer Phonetic Indexer - Remote Stack Buffer Overflow (Metasploit)
exploitdb·2011-12-01
CVE-2011-5003 AVID Media Composer Phonetic Indexer - Remote Stack Buffer Overflow (Metasploit)
AVID Media Composer Phonetic Indexer - Remote Stack Buffer Overflow (Metasploit)
---
#Name :AVID Media Composer Phonetic Indexer Remote Stack Buffer Overflow
#Vendor Website : http://www.avid.com
#Date Released : November 29, 2011
#Affected Software : AVID Media Composer "Avid Media Composer 5.5 - Avid Phonetic Indexer Stack Overflow",
'Description' => %q{
This module exploits a stack buffer overflow in process AvidPhoneticIndexer.exe (port 4659),
which comes as part of the Avid Media Composer 5.5 Editing Suite. This daemon sometimes starts on a
different port; if you start it standalone it will run on port 4660.
},
'License' => MSF_LICENSE,
'Version' => "$Revision: 13137 $",
'Author' =>
[
'vt [[email protected]]',
],
'References' =>
[
[ 'URL', 'http://www.security-ass
No writeups or analysis indexed.
2012-01-19
Published