Details of VAR-201011-0292

ID

VAR-201011-0292

TITLE

Multiple Security Vulnerabilities in Cisco Unified Videoconferencing

Trust: 0.6

sources: CNVD: CNVD-2010-5553

DESCRIPTION

Cisco Unified Videoconferencing (Cisco Video Conferencing Products) is Cisco's web conferencing solution. There are multiple vulnerabilities in Cisco's universal video conferencing products that can be exploited by malicious local users to disclose sensitive information, gain higher privileges, manipulate affected systems, hijack another user's session, and secretly manipulate affected systems. 1. There are multiple hardcoded accounts that cannot be disabled. (\"root\", \"cs\", and \"develop\") 2. The value entered into goform/websXMLAdminRequestCgi.cgi via the \"username\" parameter is not properly filtered before being used as a command line argument. 3. The reversible password hashing method is used in the configuration file /opt/rv/Versions/CurrentVersion/Mcu/Config/Mcu.val to obtain the administrator password and operator account information. 4. A globally readable shadow password. 5. Create a session ID based on the time counter to hijack another user session, for example: use a barbarian attack to retell all possible time values from the last system boot time. 6, Base64 encoded cookies or plain text storage certificates to obtain device permissions, such as: steal network traffic or man-in-the-middle attacks. Note: In addition, there are some configuration issues in the FTP, Web, and OpenSSH servers. An attacker can exploit this issue to obtain sensitive information that may lead to further attacks. This issue is being tracked by Cisco bug ID CSCti54052

Trust: 0.81

sources: CNVD: CNVD-2010-5553 // BID: 44936

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2010-5553

AFFECTED PRODUCTS

vendor:	no	model:	-	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	unified videoconferencing system	scope:	eq	version:	52300	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing system	scope:	eq	version:	51150	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing system	scope:	eq	version:	51100	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing system	scope:	eq	version:	35450	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing primary rate interface gate	scope:	eq	version:	35270	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing basic rate interfaces gatew	scope:	eq	version:	35220	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing multipoint control unit	scope:	eq	version:	35150	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing system	scope:	ne	version:	52307.1.2.15	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing system	scope:	ne	version:	51157.1.2.15	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing system	scope:	ne	version:	51107.1.2.12	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing system	scope:	ne	version:	35455.7.2	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing primary rate interface gate	scope:	ne	version:	35275.7.2	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing basic rate interfaces gatew	scope:	ne	version:	35225.7.2	Trust: 0.3
vendor:	cisco	model:	unified videoconferencing multipoint control unit	scope:	ne	version:	35155.7.2	Trust: 0.3

sources: CNVD: CNVD-2010-5553 // BID: 44936

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2010-5553
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2010-5553
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2010-5553

THREAT TYPE

network

Trust: 0.3

sources: BID: 44936

TYPE

Unknown

Trust: 0.3

sources: BID: 44936

PATCH

title:

Cisco Unified Videoconferencing Patch with Multiple Security Vulnerabilities

url:

https://www.cnvd.org.cn/patchinfo/show/43344

Trust: 0.6

sources: CNVD: CNVD-2010-5553

EXTERNAL IDS

db:	BID	id:	44936	Trust: 0.9
db:	CNVD	id:	CNVD-2010-5553	Trust: 0.6

sources: CNVD: CNVD-2010-5553 // BID: 44936

REFERENCES

url:	http://www.cisco.com/en/us/products/hw/video/ps1870/index.html	Trust: 0.3
url:	/archive/1/514797	Trust: 0.3
url:	/archive/1/514798	Trust: 0.3
url:	http://www.cisco.com/warp/public/707/cisco-sa-20101206-cuvc.shtml	Trust: 0.3
url:	http://www.cisco.com/warp/public/707/cisco-sr-20101117-cuvc.shtml	Trust: 0.3

sources: BID: 44936

CREDITS

Florent Daigniere

Trust: 0.3

sources: BID: 44936

SOURCES

db:	CNVD	id:	CNVD-2010-5553
db:	BID	id:	44936

LAST UPDATE DATE

2022-05-17T02:01:23.919000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2010-5553	date:	2014-02-18T00:00:00
db:	BID	id:	44936	date:	2010-12-06T19:55:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2010-5553	date:	2010-11-17T00:00:00
db:	BID	id:	44936	date:	2010-11-17T00:00:00