1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Cisco patch stops attackers from taking over TelePresence systems

Discussion in 'CSO' started by RSS, May 5, 2016.

  1. RSS

    RSS New Member Member

    Cisco Systems has fixed a critical vulnerability that could allow attackers to take over TelePresence systems, and patched other high-severity flaws in Cisco FirePOWER and Adaptive Security Appliance devices.

    The TelePresence software vulnerability stems from an improper authentication mechanism for the XML application programming interface (API). Attackers could exploit it by sending crafted HTTP requests to the XML API in order to bypass authentication and execute unauthorized configuration changes and commands on the system.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page