The vulnerability is due to incorrect installation and permissions settings on binary files during the Hybrid Media Service installation procedure. An attacker could exploit this vulnerability by logging in to the device and elevating privileges. A successful exploit could allow the attacker to acquire root-level privileges and take full control of the device.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
http://ift.tt/2hgXC96
The vulnerability is due to incorrect installation and permissions settings on binary files during the Hybrid Media Service installation procedure. An attacker could exploit this vulnerability by logging in to the device and elevating privileges. A successful exploit could allow the attacker to acquire root-level privileges and take full control of the device.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
http://ift.tt/2hgXC96
Security Impact Rating: Medium
CVE: CVE-2016-6470
from Cisco Security Advisory http://ift.tt/2hgXC96
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.