Vulnerabilities > CVE-2015-4681 - Credentials Management vulnerability in Polycom Realpresence Resource Manager

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
polycom
CWE-255
exploit available

Summary

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users to have unspecified impact via vectors related to weak passwords.

Vulnerable Configurations

Part Description Count
Application
Polycom
1

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionPolycom RealPresence Resource Manager < 8.4 - Multiple Vulnerabilities. CVE-2015-4681,CVE-2015-4682,CVE-2015-4683,CVE-2015-4684,CVE-2015-4685. Webapps exp...
fileexploits/hardware/webapps/37449.txt
idEDB-ID:37449
last seen2016-02-04
modified2015-06-30
platformhardware
port
published2015-06-30
reporterSEC Consult
sourcehttps://www.exploit-db.com/download/37449/
titlePolycom RealPresence Resource Manager < 8.4 - Multiple Vulnerabilities
typewebapps

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/132463/SA-20150626-0.txt
idPACKETSTORM:132463
last seen2016-12-05
published2015-06-26
reporterRene Freingruber
sourcehttps://packetstormsecurity.com/files/132463/Polycom-RealPresence-Resource-Manager-RPRM-Disclosure-Traversal.html
titlePolycom RealPresence Resource Manager (RPRM) Disclosure / Traversal