Cisco patch stops attackers from taking over TelePresence systems
The TelePresence software vulnerability stems from an improper authentication mechanism for the XML application programming interface (API). Attackers could exploit it by sending crafted HTTP requests to the XML API in order to bypass authentication and execute unauthorized configuration changes and commands on the system.
To read this article in full or to leave a comment, please click here