CVE-2011-2585 (GCVE-0-2011-2585)

Vulnerability from cvelistv5 – Published: 2011-10-20 00:00 – Updated: 2024-08-06 23:08

Summary

Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.

Severity ?

No CVSS data available.

CWE

Assigner

cisco

References

URL

CERTA-2011-AVI-584

Vulnerability from certfr_avis - Published: 2011-10-21 - Updated: 2011-10-21

Deux vulnérabilités ont été corrigées dans Cisco Show and Share dont une permet d'exécuter du code arbitraire à distance.

Description

Deux vulnérabilités ont été corrigées dans Cisco Show and Share. La première permet à une personne malintentionnée, authentifiée sur le système, d'exécuter du code arbitraire sur le serveur avec les mêmes privilèges que le compte exécutant le serveur Web (CVE-2011-2585). La seconde permet à une personne malintentionnée non authentifiée d'accéder à des pages d'administration (CVE-2011-2584).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Cisco Show and Share 5.x.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

GHSA-QW6H-8CMW-2J59

Vulnerability from github – Published: 2022-05-17 05:35 – Updated: 2022-05-17 05:35

Details

Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-2585"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-10-20T00:55:00Z",
    "severity": "MODERATE"
  },
  "details": "Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.",
  "id": "GHSA-qw6h-8cmw-2j59",
  "modified": "2022-05-17T05:35:56Z",
  "published": "2022-05-17T05:35:56Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2585"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/50285"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

VAR-201110-0197

Vulnerability from variot - Updated: 2025-04-11 22:56

Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857. The issue occurs because the application fails to adequately sanitize user-supplied input. This issue is tracked by Cisco bug IDs CSCto69857. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

Cisco Security Advisory: Cisco Show and Share Security Vulnerabilities

Advisory ID: cisco-sa-20111019-sns

Revision 1.0

For Public Release 2011 October 19 16:00 UTC (GMT)

+---------------------------------------------------------------------

Summary

The Cisco Show and Share webcasting and video sharing application contains two vulnerabilities.

The first vulnerability allows an unauthenticated user to access several administrative web pages.

Cisco has released free software updates that address these vulnerabilities.

There are no workarounds available for these vulnerabilities.

This advisory is posted at: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns

Note:Effective October 18, 2011, Cisco moved the current list of Cisco Security Advisories and Responses published by Cisco PSIRT. The new location is: http://tools.cisco.com/security/center/publicationListing You can also navigate to this page from the CiscoProducts and Services menu of the Cisco Security Intelligence Operations (SIO) Portal. Following this transition, new Cisco Security Advisories and Responses will be published to the new location. Although the URL has changed, the content of security documents and the vulnerability policy are not impacted. Cisco will continue to disclose security vulnerabilities in accordance with the published Security Vulnerability Policy.

Affected Products

Vulnerable Products +------------------

These vulnerabilities affect all versions of Cisco Show and Share prior to the first fixed releases as indicated in the Software Version and Fixes section of this Cisco Security Advisory.

To determine the Cisco Show and Share Software release that an appliance is running, administrators can log in to the Appliance Administrative Interface (AAI), and access the main menu. The software version is identified next to the Cisco Show and Share field. The following example identifies a Cisco Show and Share appliance running version 5.2.2

 Cisco Show and Share Application Administration Interface
                                 Main Menu
   IP: 192.168.0.1

   Cisco Show and Share 5.2.2
   http://sns.example.com/vportal



        SHOW_INFO               Show system information. 
        BACKUP_AND_RESTORE      Back up and restore. 
        APPLIANCE_CONTROL       Configure advance options
        NETWORK_SETTINGS        Configure network parameters. 
        DATE_TIME_SETTINGS      Configure date and time
        CERTIFICATE_MANAGEMENT  Manage all certificates in the system




                       <  OK   >           <LOG OUT>

Products Confirmed Not Vulnerable +--------------------------------

The following products are confirmed not vulnerable:

Cisco Video Portal

No other Cisco products are currently known to be affected by these vulnerabilities.

Details

Cisco Show and Share is a webcasting and video sharing application that helps organizations create secure video communities to share ideas and expertise, optimize global video collaboration, and personalize the connection between customers, employees, and students with user-generated content.

Cisco Show and Share provides the ability to create live and on-demand video content, and define who can watch specific content. It offers viewer collaboration tools such as commenting, rating, and word tagging, and provides comprehensive access reporting.

Cisco Show and Share contains the following vulnerabilities:

Anonymous users can access some administration pages

Several administrative web pages of the Cisco Show and Share can be accessed without prior user authentication. These include pages for accessing Encoders and Pull Configurations, Push Configurations, Video Encoding Formats, and Transcoding. Note: The web server runs as a non-root user. Details regarding the impact of accessing each one of these administrative pages are included in the Impact section of this Cisco Security Advisory.

Vulnerability Scoring Details

Cisco has provided scores for the vulnerabilities in this advisory based on the Common Vulnerability Scoring System (CVSS). The CVSS scoring in this Security Advisory is done in accordance with CVSS version 2.0.

CVSS is a standards-based scoring method that conveys vulnerability severity and helps determine urgency and priority of response.

Cisco has provided a base and temporal score. Customers can then compute environmental scores to assist in determining the impact of the vulnerability in individual networks.

Cisco has provided an FAQ to answer additional questions regarding CVSS at: http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html

Cisco has also provided a CVSS calculator to help compute the environmental impact for individual networks at: http://intellishield.cisco.com/security/alertmanager/cvss

CSCto73758 - Anonymous users can access some administration pages

CVSS Base Score - 7.5 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - Partial Integrity Impact - Partial Availability Impact - Partial

CVSS Temporal Score - 6.2 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed

CSCto69857 - Cisco Show and Share arbitrary code execution

CVSS Base Score - 6.5 Access Vector - Network Access Complexity - Low Authentication - Single Confidentiality Impact - Partial Integrity Impact - Partial Availability Impact - Partial

CVSS Temporal Score - 5.4 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed

Impact

These vulnerabilities have the following impact on Cisco Show and Share:

CSCto73758: Anonymous users can access some administration pages Several administrative web pages of the Cisco Show and Share can be accessed without prior user authentication. The impact of the different administrative web pages include:

Encoders Configurations +---------------------- The Encoders Configuration pages have a direct impact on live events. If all of the encoders from the encoders' configurations are removed, then a live event cannot be created. An encoder or a push configuration is required in order for a live event to be created. This page also reveals information about the encoders, such as Encoder IP Address and associated username.

Push Configurations +------------------ The Push Configurations and Encoders Configuration pages have a direct impact on live events. If all of the encoders of push configurations are removed, then a live event cannot be created. An encoder or a push configuration is required in order for a live event to be created.

Video Encoding Formats +--------------------- Video encoding formats have a direct impact on the encoders. Even with an encoder or a push configuration configured, if no video format is specified then the encoder cannot encode the video stream for the live event.

Transcoding +---------- This page does not have a direct impact on live events or the encoders. This page will only set a task to be executed for transcoding. Transcoding is a process of deriving digital media files that use one codec from digital media files that use a different codec; the source file is not changed or destroyed. If all tasks are removed the set task for transcoding will not be executed.

Software Versions and Fixes

When considering software upgrades, also consult: http://www.cisco.com/go/psirt And any subsequent advisories to determine exposure and a complete upgrade solution.

In all cases, customers should exercise caution to be certain the devices to be upgraded contain sufficient memory and that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, contact the Cisco Technical Assistance Center (TAC) or your contracted maintenance provider for assistance.

Each row of the software table (below) names a Cisco SnS release train. If a given release train is vulnerable, then the earliest possible releases that contains the fix (along with the anticipated date of availability for each, if applicable) are listed in the "First Fixed Release" column of the table. The "Recommended Release" column indicates the releases which have fixes for all the published vulnerabilities at the time of this Advisory. A device running a release in the given train that is earlier than the release in a specific column (less than the First Fixed Release) is known to be vulnerable. Cisco recommends upgrading to a release equal to or later than the release in the "Recommended Releases" column of the table.

Each row of the software table (below) names a Cisco Show and Share release train. If a given release train is vulnerable, then the earliest possible releases that contains the fix are listed in the "First Fixed Release" column of the table. A device running a release in the given train that is earlier than the "First Fixed Release" is known to be vulnerable. Cisco recommends upgrading to a release equal to or later than the release in the "First Fixed Release" column of the table.

WARNING: Please read the release notes on Cisco Show and Share version 5.2(3) regarding MCS Server Appliance support.

The following MCS Server Appliances are not supported in Cisco Show and Share version 5.2(3), and administrators should use a recommended release of 5.2(2.1) or later:

MCS 7825-H2
MCS 7825-H3
MCS 7835-H1
MCS 7835-H2

For further information for support MCS Server Appliances consult the release notes for Cisco Digital Media Suite 5.2.x at the following link: http://www.cisco.com/en/US/docs/video/digital_media_systems/5_x/5_2/dms/release/notes/dms52rn.html#wp232018

+-------------------------------------------------------------------+ | Cisco Show and Share Release | First Fixed Release | |-------------------------------+-----------------------------------| | 5(2) | Vulnerable; migrate to 5.2(2.1) | |-------------------------------+-----------------------------------| | 5.2(1) | Vulnerable; migrate to 5.2(2.1) | |-------------------------------+-----------------------------------| | 5.2(2) | 5.2(2.1) | |-------------------------------+-----------------------------------| | 5.2(3) | Not Vulnerable | +-------------------------------------------------------------------+

Note: Read the WARNING provided above regarding Cisco Show and Share version 5.2(3).

Cisco Show and Share software upgrades, can be download from: http://www.cisco.com/cisco/software/type.html?mdfid=280171242&catid=268438145

Workarounds

There are no workarounds for these vulnerabilities.

Obtaining Fixed Software

Cisco has released free software updates that address these vulnerabilities. Prior to deploying software, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment.

Customers may only install and expect support for the feature sets they have purchased. By installing, downloading, accessing or otherwise using such software upgrades, customers agree to be bound by the terms of Cisco's software license terms found at: http://www.cisco.com/en/US/docs/general/warranty/English/EU1KEN_.html Or as otherwise set forth at Cisco.com Downloads at: http://www.cisco.com/public/sw-center/sw-usingswc.shtml

Do not contact psirt@cisco.com or security-alert@cisco.com for software upgrades

Customers with Service Contracts +-------------------------------

Customers with contracts should obtain upgraded software through their regular update channels. For most customers, this means that upgrades should be obtained through the Software Center on Cisco's worldwide website at: http://www.cisco.com.

Customers using Third Party Support Organizations +------------------------------------------------

Customers whose Cisco products are provided or maintained through prior or existing agreements with third-party support organizations, such as Cisco Partners, authorized resellers, or service providers should contact that support organization for guidance and assistance with the appropriate course of action in regards to this advisory.

The effectiveness of any workaround or fix is dependent on specific customer situations, such as product mix, network topology, traffic behavior, and organizational mission. Due to the variety of affected products and releases, customers should consult with their service provider or support organization to ensure any applied workaround or fix is the most appropriate for use in the intended network before it is deployed.

Customers without Service Contracts +----------------------------------

Customers who purchase direct from Cisco but do not hold a Cisco service contract, and customers who purchase through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should acquire upgrades by contacting the Cisco Technical Assistance Center (TAC). TAC contacts are as follows.

+1 800 553 2447 (toll free from within North America)
+1 408 526 7209 (toll call from anywhere in the world)
e-mail: tac@cisco.com

Customers should have their product serial number available and be prepared to give the URL of this notice as evidence of entitlement to a free upgrade. Free upgrades for non-contract customers must be requested through the TAC.

Refer to: http://www.cisco.com/en/US/support/tsd_cisco_worldwide_contacts.html Additional TAC contact information, including localized telephone numbers, and instructions and e-mail addresses for use in various languages.

Exploitation and Public Announcements

The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability described in this advisory.

These vulnerabilities were discovered and reported to Cisco Systems by Andy Yang and Mehdi Kiani of stratsec.

Status of this Notice: Final

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.

A stand-alone copy or Paraphrase of the text of this document that omits the distribution URL in the following section is an uncontrolled copy, and may lack important information or contain factual errors.

Distribution

This advisory is posted on Cisco's worldwide website at:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns

In addition to worldwide web posting, a text version of this notice is clear-signed with the Cisco PSIRT PGP key and is posted to the following e-mail and Usenet news recipients.

cust-security-announce@cisco.com
first-teams@first.org
bugtraq@securityfocus.com
vulnwatch@vulnwatch.org
cisco@spot.colorado.edu
cisco-nsp@puck.nether.net
full-disclosure@lists.grok.org.uk
comp.dcom.sys.cisco@newsgate.cisco.com

Future updates of this advisory, if any, will be placed on Cisco's worldwide website, but may or may not be actively announced on mailing lists or newsgroups. Users concerned about this problem are encouraged to check the above URL for any updates.

Revision History

+-------------------------------------------------------------------+ | Revision 1.0 | 2011-October-19 | Initial public release. | +-------------------------------------------------------------------+

Cisco Security Procedures

Complete information on reporting security vulnerabilities in Cisco products, obtaining assistance with security incidents, and registering to receive security information from Cisco, is available on Cisco's worldwide website at: http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html This includes instructions for press inquiries regarding Cisco security notices. All Cisco security advisories are available at: http://www.cisco.com/go/psirt

+-------------------------------------------------------------------- Copyright 2010-2011 Cisco Systems, Inc. All rights reserved. +-------------------------------------------------------------------- -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org

iF4EAREIAAYFAk6ezG8ACgkQQXnnBKKRMNBC+wEAgw1X2jVS3rGMxCoAV7aZT2c/ V8mwj1IYOTyc++V/D4gA/jhvG+FAUN0Uh2j3wKuBhiM+djeLpfjpzRgkErdiM0zj =isVi -----END PGP SIGNATURE-----

Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201110-0197",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "show and share",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.2\\(1\\)"
      },
      {
        "model": "show and share",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5\\(2\\)"
      },
      {
        "model": "show and share",
        "scope": "eq",
        "trust": 1.1,
        "vendor": "cisco",
        "version": "5.2(1)"
      },
      {
        "model": "show and share",
        "scope": "eq",
        "trust": 1.1,
        "vendor": "cisco",
        "version": "5(2)"
      },
      {
        "model": "show and share",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.2\\(2\\)"
      },
      {
        "model": "show and share",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.2(2.1)"
      },
      {
        "model": "show and share",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.2(2)"
      },
      {
        "model": "show and share",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "5.2\\(2\\)"
      },
      {
        "model": "show and share",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.2(2)"
      },
      {
        "model": "show and share",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.2(2.1)"
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "50285"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:cisco:show_and_share",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "50285"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2011-2585",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.0,
            "id": "CVE-2011-2585",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.0,
            "id": "VHN-50530",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:S/C:P/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2011-2585",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2011-2585",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201110-515",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-50530",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857. The issue occurs because the application fails to adequately sanitize user-supplied input. \nThis issue is tracked by Cisco bug IDs CSCto69857. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\nCisco Security Advisory: Cisco Show and Share Security Vulnerabilities\n\nAdvisory ID: cisco-sa-20111019-sns\n\nRevision 1.0\n\nFor Public Release 2011 October 19 16:00  UTC (GMT)\n\n+---------------------------------------------------------------------\n\nSummary\n=======\n\nThe Cisco Show and Share webcasting and video sharing application\ncontains two vulnerabilities. \n\nThe first vulnerability allows an unauthenticated user to access\nseveral administrative web pages. \n\nCisco has released free software updates that address these\nvulnerabilities. \n\nThere are no workarounds available for these vulnerabilities. \n\nThis advisory is posted at:\nhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns\n\nNote:Effective October 18, 2011, Cisco moved the current list of\nCisco Security Advisories and Responses published by Cisco PSIRT. The\nnew location is:\nhttp://tools.cisco.com/security/center/publicationListing \nYou can also navigate to this page from the CiscoProducts and Services\nmenu of the Cisco Security Intelligence Operations (SIO) Portal. \nFollowing this transition, new Cisco Security Advisories and Responses\nwill be published to the new location. Although the URL has changed,\nthe content of security documents and the vulnerability policy are not\nimpacted. Cisco will continue to disclose security vulnerabilities in\naccordance with the published Security Vulnerability Policy. \n\nAffected Products\n=================\n\nVulnerable Products\n+------------------\n\nThese vulnerabilities affect all versions of Cisco Show and Share\nprior to the first fixed releases as indicated in the Software\nVersion and Fixes section of this Cisco Security Advisory. \n\nTo determine the Cisco Show and Share Software release that an\nappliance is running, administrators can log in to the Appliance\nAdministrative Interface (AAI), and access the main menu. The\nsoftware version is identified next to the Cisco Show and Share\nfield. The following example identifies a Cisco Show and Share\nappliance running version 5.2.2\n\n     Cisco Show and Share Application Administration Interface\n                                     Main Menu\n       IP: 192.168.0.1\n\n       Cisco Show and Share 5.2.2\n       http://sns.example.com/vportal\n\n\n\n            SHOW_INFO               Show system information. \n            BACKUP_AND_RESTORE      Back up and restore. \n            APPLIANCE_CONTROL       Configure advance options\n            NETWORK_SETTINGS        Configure network parameters. \n            DATE_TIME_SETTINGS      Configure date and time\n            CERTIFICATE_MANAGEMENT  Manage all certificates in the system\n\n\n\n\n                           \u003c  OK   \u003e           \u003cLOG OUT\u003e\n\n\nProducts Confirmed Not Vulnerable\n+--------------------------------\n\nThe following products are confirmed not vulnerable:\n\n  * Cisco Video Portal\n\nNo other Cisco products are currently known to be affected by these\nvulnerabilities. \n\nDetails\n=======\n\nCisco Show and Share is a webcasting and video sharing application\nthat helps organizations create secure video communities to share\nideas and expertise, optimize global video collaboration, and\npersonalize the connection between customers, employees, and students\nwith user-generated content. \n\nCisco Show and Share provides the ability to create live and\non-demand video content, and define who can watch specific content. \nIt offers viewer collaboration tools such as commenting, rating, and\nword tagging, and provides comprehensive access reporting. \n\nCisco Show and Share contains the following vulnerabilities:\n\n  * Anonymous users can access some administration pages\n\n    Several administrative web pages of the Cisco Show and Share can\n    be accessed without prior user authentication. These include\n    pages for accessing Encoders and Pull Configurations, Push\n    Configurations, Video Encoding Formats, and Transcoding. \n    Note: The web server runs as a non-root user.  Details regarding\n    the impact of accessing each one of these administrative pages\n    are included in the Impact section of this Cisco Security\n    Advisory. \n\nVulnerability Scoring Details\n=============================\n\nCisco has provided scores for the vulnerabilities in this advisory\nbased on the Common Vulnerability Scoring System (CVSS). The CVSS\nscoring in this Security Advisory is done in accordance with CVSS\nversion 2.0. \n\nCVSS is a standards-based scoring method that conveys vulnerability\nseverity and helps determine urgency and priority of response. \n\nCisco has provided a base and temporal score. Customers can then\ncompute environmental scores to assist in determining the impact of\nthe vulnerability in individual networks. \n\nCisco has provided an FAQ to answer additional questions regarding\nCVSS at:\nhttp://www.cisco.com/web/about/security/intelligence/cvss-qandas.html\n\n\nCisco has also provided a CVSS calculator to help compute the\nenvironmental impact for individual networks at:\nhttp://intellishield.cisco.com/security/alertmanager/cvss \n\n\n\n* CSCto73758 - Anonymous users can access some administration pages \n\nCVSS Base Score - 7.5\n    Access Vector -            Network\n    Access Complexity -        Low\n    Authentication -           None\n    Confidentiality Impact -   Partial\n    Integrity Impact -         Partial\n    Availability Impact -      Partial\n\nCVSS Temporal Score - 6.2\n    Exploitability -           Functional\n    Remediation Level -        Official-Fix\n    Report Confidence -        Confirmed\n\n\n\n* CSCto69857 - Cisco Show and Share arbitrary code execution \n\nCVSS Base Score - 6.5\n    Access Vector -            Network\n    Access Complexity -        Low\n    Authentication -           Single\n    Confidentiality Impact -   Partial\n    Integrity Impact -         Partial\n    Availability Impact -      Partial\n\nCVSS Temporal Score - 5.4\n    Exploitability -           Functional\n    Remediation Level -        Official-Fix\n    Report Confidence -        Confirmed\n\n\nImpact\n======\n\nThese vulnerabilities have the following impact on Cisco Show and\nShare:\n\n  * CSCto73758: Anonymous users can access some administration pages\n    Several administrative web pages of the Cisco Show and Share can\n    be accessed without prior user authentication. The impact of the\n    different administrative web pages include:\n\n    Encoders Configurations\n    +----------------------\n    The Encoders Configuration pages have a direct impact on live\n    events. If all of the encoders from the encoders\u0027 configurations\n    are removed, then a live event cannot be created. An encoder or a\n    push configuration is required in order for a live event to be\n    created. This page also reveals information about the encoders,\n    such as Encoder IP Address and associated username. \n\n    Push Configurations\n    +------------------\n    The Push Configurations and Encoders Configuration pages have a\n    direct impact on live events. If all of the encoders of push\n    configurations are removed, then a live event cannot be created. \n    An encoder or a push configuration is required in order for a\n    live event to be created. \n\n    Video Encoding Formats\n    +---------------------\n    Video encoding formats have a direct impact on the encoders. Even\n    with an encoder or a push configuration configured, if no video\n    format is specified then the encoder cannot encode the video\n    stream for the live event. \n\n\n    Transcoding\n    +----------\n    This page does not have a direct impact on live events or the\n    encoders. This page will only set a task to be executed for\n    transcoding. Transcoding is a process of deriving digital media\n    files that use one codec from digital media files that use a\n    different codec; the source file is not changed or destroyed. If\n    all tasks are removed the set task for transcoding will not be\n    executed. \n\nSoftware Versions and Fixes\n===========================\n\nWhen considering software upgrades, also consult:\nhttp://www.cisco.com/go/psirt \nAnd any subsequent advisories to determine exposure and a complete\nupgrade solution. \n\nIn all cases, customers should exercise caution to be certain the\ndevices to be upgraded contain sufficient memory and that current\nhardware and software configurations will continue to be supported\nproperly by the new release. If the information is not clear, contact\nthe Cisco Technical Assistance Center (TAC) or your contracted\nmaintenance provider for assistance. \n\nEach row of the software table (below) names a Cisco SnS release\ntrain. If a given release train is vulnerable, then the earliest\npossible releases that contains the fix (along with the anticipated\ndate of availability for each, if applicable) are listed in the\n\"First Fixed Release\" column of the table. The \"Recommended Release\"\ncolumn indicates the releases which have fixes for all the published\nvulnerabilities at the time of this Advisory. A device running a\nrelease in the given train that is earlier than the release in a\nspecific column (less than the First Fixed Release) is known to be\nvulnerable. Cisco recommends upgrading to a release equal to or later\nthan the release in the \"Recommended Releases\" column of the table. \n\nEach row of the software table (below) names a Cisco Show and Share\nrelease train. If a given release train is vulnerable, then the\nearliest possible releases that contains the fix are listed in the\n\"First Fixed Release\" column of the table. A device running a release\nin the given train that is earlier than the \"First Fixed Release\" is\nknown to be vulnerable. Cisco recommends upgrading to a release equal\nto or later than the release in the \"First Fixed Release\" column of\nthe table. \n\nWARNING: Please read the release notes on Cisco Show and Share\nversion 5.2(3) regarding MCS Server Appliance support. \n\nThe following MCS Server Appliances are not supported in Cisco Show\nand Share version 5.2(3), and administrators should use a recommended\nrelease of 5.2(2.1) or later:\n\n  * MCS 7825-H2\n  * MCS 7825-H3\n  * MCS 7835-H1\n  * MCS 7835-H2\n\nFor further information for support MCS Server Appliances consult the\nrelease notes for Cisco Digital Media Suite 5.2.x at the following\nlink: \nhttp://www.cisco.com/en/US/docs/video/digital_media_systems/5_x/5_2/dms/release/notes/dms52rn.html#wp232018\n\n+-------------------------------------------------------------------+\n| Cisco Show and Share Release  |        First Fixed Release        |\n|-------------------------------+-----------------------------------|\n| 5(2)                          | Vulnerable; migrate to 5.2(2.1)   |\n|-------------------------------+-----------------------------------|\n| 5.2(1)                        | Vulnerable; migrate to 5.2(2.1)   |\n|-------------------------------+-----------------------------------|\n| 5.2(2)                        | 5.2(2.1)                          |\n|-------------------------------+-----------------------------------|\n| 5.2(3)                        | Not Vulnerable                    |\n+-------------------------------------------------------------------+\n\nNote: Read the WARNING provided above regarding Cisco Show and Share\nversion 5.2(3). \n\nCisco Show and Share software upgrades, can be download from: \nhttp://www.cisco.com/cisco/software/type.html?mdfid=280171242\u0026catid=268438145\n\nWorkarounds\n===========\n\nThere are no workarounds for these vulnerabilities. \n\nObtaining Fixed Software\n========================\n\nCisco has released free software updates that address these\nvulnerabilities. Prior to deploying software, customers should\nconsult their maintenance provider or check the software for feature\nset compatibility and known issues specific to their environment. \n\nCustomers may only install and expect support for the feature sets\nthey have purchased. By installing, downloading, accessing or\notherwise using such software upgrades, customers agree to be bound\nby the terms of Cisco\u0027s software license terms found at:\nhttp://www.cisco.com/en/US/docs/general/warranty/English/EU1KEN_.html\nOr as otherwise set forth at Cisco.com Downloads at:\n http://www.cisco.com/public/sw-center/sw-usingswc.shtml\n\nDo not contact psirt@cisco.com or security-alert@cisco.com for\nsoftware upgrades\n\nCustomers with Service Contracts\n+-------------------------------\n\nCustomers with contracts should obtain upgraded software through\ntheir regular update channels. For most customers, this means that\nupgrades should be obtained through the Software Center on Cisco\u0027s\nworldwide website at:\nhttp://www.cisco.com. \n\nCustomers using Third Party Support Organizations\n+------------------------------------------------\n\nCustomers whose Cisco products are provided or maintained through\nprior or existing agreements with third-party support organizations,\nsuch as Cisco Partners, authorized resellers, or service providers\nshould contact that support organization for guidance and assistance\nwith the appropriate course of action in regards to this advisory. \n\nThe effectiveness of any workaround or fix is dependent on specific\ncustomer situations, such as product mix, network topology, traffic\nbehavior, and organizational mission. Due to the variety of affected\nproducts and releases, customers should consult with their service\nprovider or support organization to ensure any applied workaround or\nfix is the most appropriate for use in the intended network before it\nis deployed. \n\nCustomers without Service Contracts\n+----------------------------------\n\nCustomers who purchase direct from Cisco but do not hold a Cisco\nservice contract, and customers who purchase through third-party\nvendors but are unsuccessful in obtaining fixed software through\ntheir point of sale should acquire upgrades by contacting the Cisco\nTechnical Assistance Center (TAC). TAC contacts are as follows. \n\n  * +1 800 553 2447 (toll free from within North America)\n  * +1 408 526 7209 (toll call from anywhere in the world)\n  * e-mail: tac@cisco.com\n\nCustomers should have their product serial number available and be\nprepared to give the URL of this notice as evidence of entitlement to\na free upgrade. Free upgrades for non-contract customers must be\nrequested through the TAC. \n\nRefer to:\nhttp://www.cisco.com/en/US/support/tsd_cisco_worldwide_contacts.html\nAdditional TAC contact information, including localized telephone\nnumbers, and instructions and e-mail addresses for use in various\nlanguages. \n\nExploitation and Public Announcements\n=====================================\n\nThe Cisco PSIRT is not aware of any public announcements or malicious\nuse of the vulnerability described in this advisory. \n\nThese vulnerabilities were discovered and reported to Cisco Systems\nby Andy Yang and Mehdi Kiani of stratsec. \n\nStatus of this Notice: Final\n============================\n\nTHIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY\nKIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF\nMERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE\nINFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS\nAT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS\nDOCUMENT AT ANY TIME. \n\nA stand-alone copy or Paraphrase of the text of this document that\nomits the distribution URL in the following section is an\nuncontrolled copy, and may lack important information or contain\nfactual errors. \n\n\nDistribution\n============\n\nThis advisory is posted on Cisco\u0027s worldwide website at:\n\nhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns\n\nIn addition to worldwide web posting, a text version of this notice\nis clear-signed with the Cisco PSIRT PGP key and is posted to the\nfollowing e-mail and Usenet news recipients. \n\n  * cust-security-announce@cisco.com\n  * first-teams@first.org\n  * bugtraq@securityfocus.com\n  * vulnwatch@vulnwatch.org\n  * cisco@spot.colorado.edu\n  * cisco-nsp@puck.nether.net\n  * full-disclosure@lists.grok.org.uk\n  * comp.dcom.sys.cisco@newsgate.cisco.com\n\nFuture updates of this advisory, if any, will be placed on Cisco\u0027s\nworldwide website, but may or may not be actively announced on\nmailing lists or newsgroups. Users concerned about this problem are\nencouraged to check the above URL for any updates. \n\n\nRevision History\n================\n\n+-------------------------------------------------------------------+\n| Revision 1.0   | 2011-October-19    | Initial public release.     |\n+-------------------------------------------------------------------+\n\nCisco Security Procedures\n=========================\n\nComplete information on reporting security vulnerabilities in Cisco\nproducts, obtaining assistance with security incidents, and\nregistering to receive security information from Cisco, is available\non Cisco\u0027s worldwide website at:\nhttp://www.cisco.com/en/US/products/products_security_vulnerability_policy.html\nThis includes instructions for press inquiries regarding Cisco\nsecurity notices. All Cisco security advisories are available at:\nhttp://www.cisco.com/go/psirt\n\n+--------------------------------------------------------------------\nCopyright 2010-2011 Cisco Systems, Inc. All rights reserved. \n+--------------------------------------------------------------------\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG/MacGPG2 v2.0.17 (Darwin)\nComment: GPGTools - http://gpgtools.org\n\niF4EAREIAAYFAk6ezG8ACgkQQXnnBKKRMNBC+wEAgw1X2jVS3rGMxCoAV7aZT2c/\nV8mwj1IYOTyc++V/D4gA/jhvG+FAUN0Uh2j3wKuBhiM+djeLpfjpzRgkErdiM0zj\n=isVi\n-----END PGP SIGNATURE-----\n\n_______________________________________________\nFull-Disclosure - We believe in it. \nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\nHosted and sponsored by Secunia - http://secunia.com/\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2011-2585"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "db": "BID",
        "id": "50285"
      },
      {
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "db": "PACKETSTORM",
        "id": "105987"
      }
    ],
    "trust": 2.07
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2011-2585",
        "trust": 2.9
      },
      {
        "db": "BID",
        "id": "50285",
        "trust": 1.4
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515",
        "trust": 0.7
      },
      {
        "db": "CISCO",
        "id": "20111019 CISCO SHOW AND SHARE SECURITY VULNERABILITIES",
        "trust": 0.6
      },
      {
        "db": "NSFOCUS",
        "id": "17978",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-50530",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "105987",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "db": "BID",
        "id": "50285"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "db": "PACKETSTORM",
        "id": "105987"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "id": "VAR-201110-0197",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-50530"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2025-04-11T22:56:25.404000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20111019-sns",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns"
      },
      {
        "title": "24096",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=24096"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-94",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.1,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20111019-sns"
      },
      {
        "trust": 1.1,
        "url": "http://www.securityfocus.com/bid/50285"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-2585"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-2585"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/17978"
      },
      {
        "trust": 0.3,
        "url": "http://proquiz.softon.org/"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/en/us/docs/video/digital_media_systems/5_x/5_2/dms/release/notes/dms52rn.html#wp232018"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2585"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/go/psirt"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/en/us/support/tsd_cisco_worldwide_contacts.html"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/en/us/products/products_security_vulnerability_policy.html"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/cisco/software/type.html?mdfid=280171242\u0026catid=268438145"
      },
      {
        "trust": 0.1,
        "url": "http://tools.cisco.com/security/center/publicationlisting"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/en/us/docs/general/warranty/english/eu1ken_.html"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com."
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/public/sw-center/sw-usingswc.shtml"
      },
      {
        "trust": 0.1,
        "url": "http://lists.grok.org.uk/full-disclosure-charter.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2584"
      },
      {
        "trust": 0.1,
        "url": "http://sns.example.com/vportal"
      },
      {
        "trust": 0.1,
        "url": "http://gpgtools.org"
      },
      {
        "trust": 0.1,
        "url": "http://intellishield.cisco.com/security/alertmanager/cvss"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "db": "BID",
        "id": "50285"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "db": "PACKETSTORM",
        "id": "105987"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "db": "BID",
        "id": "50285"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "db": "PACKETSTORM",
        "id": "105987"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2011-10-20T00:00:00",
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "date": "2011-10-19T00:00:00",
        "db": "BID",
        "id": "50285"
      },
      {
        "date": "2011-10-28T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "date": "2011-10-19T22:30:13",
        "db": "PACKETSTORM",
        "id": "105987"
      },
      {
        "date": "2011-10-20T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      },
      {
        "date": "2011-10-20T00:55:00.707000",
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2012-01-12T00:00:00",
        "db": "VULHUB",
        "id": "VHN-50530"
      },
      {
        "date": "2011-10-19T00:00:00",
        "db": "BID",
        "id": "50285"
      },
      {
        "date": "2011-10-28T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      },
      {
        "date": "2011-10-21T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      },
      {
        "date": "2025-04-11T00:51:21.963000",
        "db": "NVD",
        "id": "CVE-2011-2585"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Show and Share Vulnerable to arbitrary code execution",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-002596"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "code injection",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201110-515"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2011-2585

Vulnerability from fkie_nvd - Published: 2011-10-20 00:55 - Updated: 2025-04-11 00:51

Severity ?

Summary

Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.

References

URL	Tags
psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns	Vendor Advisory
psirt@cisco.com	http://www.securityfocus.com/bid/50285
af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/50285

Impacted products

Vendor	Product	Version
cisco	show_and_share	*
cisco	show_and_share	5\(2\)
cisco	show_and_share	5.2\(1\)

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:show_and_share:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D806BA1-0346-4DA0-A02F-4FAEA6A78498",
              "versionEndIncluding": "5.2\\(2\\)",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:show_and_share:5\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "DE30C9B4-8EAF-4046-B715-36C6450562E0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:show_and_share:5.2\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "D9789694-853B-433D-8A9D-D92B655BC9E7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857."
    },
    {
      "lang": "es",
      "value": "Cisco Show y Share v5(2), v5.2(1), y v5.2(2) anterior a v5.2(2.1) permite a usuarios autenticados de forma remota subir y ejecutar c\u00f3digo de su elecci\u00f3n aprovechando la subida de privilegios de v\u00eddeo, tambi\u00e9n conocido como Bug ID CSCto69857."
    }
  ],
  "id": "CVE-2011-2585",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-10-20T00:55:00.707",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securityfocus.com/bid/50285"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/50285"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2011-2585

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.

Aliases

CVE-2011-2585

Aliases

CVE-2011-2585

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2011-2585",
    "description": "Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.",
    "id": "GSD-2011-2585"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2011-2585"
      ],
      "details": "Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.",
      "id": "GSD-2011-2585",
      "modified": "2023-12-13T01:19:06.774567Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2011-2585",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "50285",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/50285"
          },
          {
            "name": "20111019 Cisco Show and Share Security Vulnerabilities",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:show_and_share:5\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:show_and_share:5.2\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:show_and_share:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "5.2\\(2\\)",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2011-2585"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-94"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20111019 Cisco Show and Share Security Vulnerabilities",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-sns"
            },
            {
              "name": "50285",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/50285"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2012-01-12T04:03Z",
      "publishedDate": "2011-10-20T00:55Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2011-2585 (GCVE-0-2011-2585)

CERTA-2011-AVI-584

Description

Solution

GHSA-QW6H-8CMW-2J59

VAR-201110-0197

Summary

Affected Products

Details

Vulnerability Scoring Details

Impact

Software Versions and Fixes

Workarounds

Obtaining Fixed Software

Exploitation and Public Announcements

Status of this Notice: Final

Distribution

Revision History

Cisco Security Procedures

FKIE_CVE-2011-2585

GSD-2011-2585

Tags

Sightings

Nomenclature