vulnerability note CVE-2012-5416
Cisco Unified MeetingPlace Web Conferencing: buffer overflow
Synthesis of the vulnerability
An attacker can generate a buffer overflow in Cisco Unified MeetingPlace Web Conferencing, in order to execute code.Impacted products: Cisco Unified Meeting Place
BID-56349, CERTA-2012-AVI-615, cisco-sa-20121031-mp, CSCua66341, CVE-2012-5416, VIGILANCE-VUL-12104.
Description of the vulnerability
The Cisco Unified MeetingPlace Web Conferencing product uses form based on HTTP POST queries.
However, the size of HTTP POST parameters is not checked.
An attacker can therefore generate a buffer overflow in Cisco Unified MeetingPlace Web Conferencing, in order to execute code.Complete Vigil@nce bulletin....
Share this bulletin
Computer vulnerabilities tracking service
Vigil@nce provides a systems vulnerabilities database
. The technology watch team tracks security threats targeting the computer system. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system. The Vigil@nce vulnerability database contains several thousand vulnerabilities.