Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Cisco TelePresence Server Denial of Service Vulnerability

Information

Severity

Severity

High

Family

Family

CISCO

CVSSv2 Base

CVSSv2 Base

7.8

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

7 years ago

Modified

Modified

4 years ago

Share

Summary

Cisco TelePresence Server contains a buffer overflow vulnerability in the Conference Control Protocol API that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

Insight

Insight

This vulnerability is documented in Cisco bug ID CSCuu28277

Affected Software

Affected Software

All releases of Cisco TelePresence Server software prior to 4.1(2.33) running on the following products are affected by this vulnerability: Cisco TelePresence Server 7010 Cisco TelePresence Server MSE 8710 Cisco TelePresence Server on Multiparty Media 310 Cisco TelePresence Server on Multiparty Media 320 Cisco TelePresence Server on Virtual Machine

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

Updates are available

Common Vulnerabilities and Exposures (CVE)

References