CVE-2015-4329

Sažetak

The administrator web interface in Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows remote authenticated users to execute arbitrary OS commands via crafted HTTP requests, aka Bug ID CSCuv11796.

Reference

http://tools.cisco.com/security/center/viewAlert.x?alertId=40523
http://www.securityfocus.com/bid/76395
http://www.securitytracker.com/id/1033329

CVSS

Base:	6.5
Impact:	6.4
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

04-01-2017 - 18:37

Objavljeno

20-08-2015 - 10:59