CVE-2011-0385 Information

Description

The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x 1.1.x 1.5.x and 1.6.x allows remote attackers to create or overwrite arbitrary files and possibly execute arbitrary code via a crafted request aka Bug IDs CSCth85786 and CSCth61065.

Reference

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e11d.shtml http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14e.shtml http://www.securitytracker.com/id?1025113 http://www.securitytracker.com/id?1025114 https://exchange.xforce.ibmcloud.com/vulnerabilities/65604