 |
|
|
|
| Cisco Show and Share security vulnerabilities | | Published: |  | 24.10.2011 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 11992 | | Type: |  | remote | | Level: |  | 6/10 | | Description: |  | Authentication bypass, code execution. |
| Affected: |  | CISCO : Cisco Show and Share 5.2 | | CVE: |  | CVE-2011-2585 (Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.) | | | | CVE-2011-2584 (Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote attackers to access the (1) Encoders and Pull Configurations, (2) Push Configurations, (3) Video Encoding Formats, and (4) Transcoding administration pages, and cause a denial of service (live event outage) or obtain potentially sensitive information, via unspecified vectors, aka Bug ID CSCto73758.) |
|
|
|
|
|
|
|
|
