CVE-2015-6261 Information

Description

Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authenticated users to bypass intended access restrictions and read configuration files by leveraging the Mobile and Remote Access (MRA) role and establishing a TFTP session aka Bug ID CSCuv78531.

Reference

http://tools.cisco.com/security/center/viewAlert.x?alertId=40620 http://www.securitytracker.com/id/1033379