CVE - CVE-2011-2543

CVE-ID
CVE-2011-2543	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC4.2.0 allows remote authenticated users to cause a denial of service (endpoint reboot or process crash) or possibly execute arbitrary code via a long location parameter to the getxml program, aka Bug ID CSCtq46496.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:49670 URL:http://www.securityfocus.com/bid/49670 BUGTRAQ:20110919 Cisco TelePresence Multiple Vulnerabilities - SOS-11-010 URL:http://www.securityfocus.com/archive/1/519698/100/0/threaded EXPLOIT-DB:17871 URL:http://www.exploit-db.com/exploits/17871 SECTRACK:1026072 URL:http://securitytracker.com/id?1026072 SECUNIA:46057 URL:http://secunia.com/advisories/46057 SECUNIA:46109 URL:http://secunia.com/advisories/46109 SREASON:8393 URL:http://securityreason.com/securityalert/8393 XF:cisco-telepresence-getxml-bo(69907) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/69907
Assigning CNA
Cisco Systems, Inc.
Date Record Created
20110627	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20110627)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)