RSS   Vulnerabilities for
'Lifesize room appliance software'
   RSS

2011-09-02
 
CVE-2011-2763

CWE-20
 

 
The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) and 4.7.18 allows remote attackers to execute arbitrary commands via a modified request to the LSRoom_Remoting.doCommand function in gateway.php.

 
 
CVE-2011-2762

CWE-287
 

 
The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF data and the LSRoom_Remoting.authenticate function in gateway.php.

 

 >>> Vendor: Lifesize 8 Products
Lifesize room appliance software
Networker 220 firmware
Passport 220 firmware
Room 220 firmware
Team 220 firmware
Icon 300 firmware
Icon 500 firmware
Icon 700 firmware


Copyright 2024, cxsecurity.com

 

Back to Top