1. Home
  2. CVE Database
  3. CVE-2011-0385
HIGH · 10.0

CVE-2011-0385

The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x...

Vulnerability Description

The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote attackers to create or overwrite arbitrary files, and possibly execute arbitrary code, via a crafted request, aka Bug IDs CSCth85786 and CSCth61065.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoTelepresence Recording Server Software1.6.1
CiscoTelepresence Recording ServerAll versions
CiscoTelepresence Multipoint Switch Software1.0.4.0
CiscoTelepresence Multipoint SwitchAll versions

References

FAQ

What is CVE-2011-0385?

CVE-2011-0385 is a vulnerability with a CVSS score of 10.0 (HIGH). The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x...

How severe is CVE-2011-0385?

CVE-2011-0385 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-0385?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Telepresence Recording Server Software, Cisco Telepresence Recording Server, Cisco Telepresence Multipoint Switch Software, Cisco Telepresence Multipoint Switch.