Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco unified_videoconferencing_system_5115_firmware 7.0.1.13.3 |
||
cisco unified_videoconferencing_system_5110_firmware 7.0.1.13.3 |
||
cisco unified_videoconferencing_system_5110 |
||
cisco unified_videoconferencing_system_5115 |