Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0589

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2015-0589
Last Modified 13 Feb 2015 10:01:10
Published 07 Feb 2015 10:59:06
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2015-0589

Summary

The administrative web interface in Cisco WebEx Meetings Server 1.0 through 1.5 allows remote authenticated users to execute arbitrary OS commands with root privileges via unspecified fields, aka Bug ID CSCuj40460.

Vulnerable Systems

Application

  • Cisco Webex Meetings Server 1.0

  • Cisco Webex Meetings Server 1.1

  • Cisco Webex Meetings Server 1.5


References

CISCO - 20150204 Cisco WebEx Meetings Server Command Injection Vulnerability

XF - cisco-webex-cve20150589-command-exec(100719)

SECTRACK - 1031692

BID - 72493

SECUNIA - 62799


Last Updated: 27 May 2016 11:07:48