fkie_nvd - fkie_cve-2012-3075

fkie_cve-2012-3075

Vulnerability from fkie_nvd

Published

2012-07-12 10:34

Modified

2025-04-11 00:51

Severity ?

Summary

The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4 allows remote authenticated users to execute arbitrary commands via a malformed request on TCP port 443, aka Bug ID CSCtn99724.

References

▶	URL	Tags
	psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	telepresence_system_software	*
cisco	telepresence_system_software	1.2.3\(1101\)
cisco	telepresence_system_software	1.3.2\(1393\)
cisco	telepresence_system_software	1.4.7\(2229\)
cisco	telepresence_system_software	1.5.1\(2082\)
cisco	telepresence_system_software	1.5.3\(2115\)
cisco	telepresence_system_software	1.5.10\(3648\)
cisco	telepresence_system_software	1.5.11\(3659\)
cisco	telepresence_system_software	1.5.12\(3701\)
cisco	telepresence_system_software	1.5.13\(3717\)
cisco	telepresence_system_software	1.6.0\(3954\)
cisco	telepresence_system_software	1.6.2\(4023\)
cisco	telepresence_system_software	1.6.3\(4042\)
cisco	telepresence_system_software	1.6.4\(4072\)
cisco	telepresence_system_software	1.6.5\(4097\)
cisco	telepresence_system_software	1.6.6\(4109\)
cisco	telepresence_system_software	1.6.7\(4212\)
cisco	telepresence_system_software	1.6.8\(4222\)
cisco	telepresence_system_software	1.7.0.1\(4764\)
cisco	telepresence_system_software	1.7.0.2\(4719\)
cisco	telepresence_system_software	1.7.1\(4864\)
cisco	telepresence_system_software	1.7.2.1\(2\)
cisco	telepresence_system_1300_65	*
cisco	telepresence_system_3000	*
cisco	telepresence_system_3010	*
cisco	telepresence_system_3200	*
cisco	telepresence_system_3210	*
cisco	telepresence_system_t3	*
cisco	telepresence_system_t3	*
cisco	telepresence_system_tx1300_47	*
cisco	telepresence_system_tx1310_65	*
cisco	telepresence_system_tx9000	*
cisco	telepresence_system_tx9200	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCDE616E-7EAA-46BA-ABAB-D5BF57ED05D9",
              "versionEndIncluding": "1.7.2\\(4937\\)",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.2.3\\(1101\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "12193063-0545-402F-87E6-61023184F5EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.3.2\\(1393\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "90D72D8E-0826-4716-A2EE-B934150EC5F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.4.7\\(2229\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "494F0584-197E-4892-BD58-B574DBD090FD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.1\\(2082\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "DEAF862B-43D6-42A2-B710-ED803906F251",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.3\\(2115\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "9FA3E247-E67F-4237-AF71-FEB0528EC35F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.10\\(3648\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "C68D879E-4522-4069-84B7-ED7C511B9D05",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.11\\(3659\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "3C97CD7F-1ED4-4F44-BC53-5CC3871915B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.12\\(3701\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "45A3BE96-E4F8-4362-A18E-0EBCF4D65490",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.13\\(3717\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "679CFA7C-60D4-4369-905F-B52DCD321603",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.0\\(3954\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "90C4668B-CB7C-44EB-B352-DED7C252EAD6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.2\\(4023\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "6BDB4EBF-C8A1-4CE6-B377-C09983BF3A21",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.3\\(4042\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "43DAFA6C-2A25-499D-B11B-801F9031F2A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.4\\(4072\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "456BF22C-3010-451F-853F-C46E94E954D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.5\\(4097\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "B4A64D44-EC08-4601-93AC-6C02A4412D8C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.6\\(4109\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "090FA16C-ABF2-4464-8219-D7A8917A7ECC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.7\\(4212\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "774A9C95-8111-425B-A411-26F614384135",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.8\\(4222\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "E6D1A003-6593-4934-8518-CC40F3F8ACE3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.0.1\\(4764\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "2B98FCCA-923C-4501-9B06-70CB3731F49A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.0.2\\(4719\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "29E0E9FC-EF3F-470A-93A4-CC9C7A71F6EC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.1\\(4864\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "1AE77C52-E526-4B48-8EFA-5F5C59956308",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.2.1\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "315EDAEC-3C60-445A-9613-23D38E8C2873",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_1300_65:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6AFF059-43A9-4419-92AB-D0EAFBE1511D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_3000:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC14CB1A-DE5C-4877-8FFB-DF2FA1ADE176",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_3010:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5EF6B03F-670A-4604-8B4F-1F05B146E36A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_3200:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC220DAD-E967-4CC5-9C13-6A5AE98D79EF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_3210:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A13ACECA-121B-4D77-AB54-F579CF67098B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_t3:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6CC98538-DDC7-4694-BF83-575D636D3817",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_t3:*:*:custom:*:*:*:*:*",
              "matchCriteriaId": "E4E6005C-6268-4180-ABF7-0BEF945EEE54",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_tx1300_47:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C0CEC335-24DB-4C7E-B138-D566C95FB30E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_tx1310_65:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1FCAAE92-6F2E-4F11-A240-D5EC67974424",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_tx9000:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "911B3EBA-5640-458A-B18A-FAC1309F37FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:telepresence_system_tx9200:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DCEB3C5-6C28-4D91-900E-98F0DC02478E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4 allows remote authenticated users to execute arbitrary commands via a malformed request on TCP port 443, aka Bug ID CSCtn99724."
    },
    {
      "lang": "es",
      "value": "La interfaz web de administraci\u00f3n en Cisco TelePresence Immersive Endpoint Devices anterior a v1.7.4 permite a usuarios remotos autenticados  ejecutar c\u00f3digo arbitrario a trav\u00e9s de una petici\u00f3n TCP mal formada al puerto 443, tambi\u00e9n conocido como Bug ID CSCtn99724"
    }
  ],
  "id": "CVE-2012-3075",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2012-07-12T10:34:42.380",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-78"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2012-3075 (GCVE-0-2012-3075)

Vulnerability from cvelistv5

Published

2012-07-12 10:00

Modified

2024-09-16 21:07

Severity ?

CWE

Summary

References

►

URL

Tags

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts

vendor-advisory, x_refsource_CISCO