CVE-2013-3454 Information

Description

Cisco TelePresence System Software 1.10.1 and earlier on 500 13X0 1X00 30X0 and 3X00 devices and 6.0.3 and earlier on TX 9X00 devices has a default password for the pwrecovery account which makes it easier for remote attackers to modify the configuration or perform arbitrary actions via HTTPS requests aka Bug ID CSCui43128.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130807-tp