Описание
Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a malformed SIP message, aka Bug ID CSCtr20426.
Комментарий
Per: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-vcs
'Vulnerable Products These vulnerabilities affect all three variants (Control, Expressway, and Starter Pack Express) of Cisco TelePresence Video Communication Server.'
Уязвимые конфигурации
Конфигурация 1Версия до x7.0 (включая)
Одновременно
Одно из
cpe:2.3:a:cisco:telepresence_system_software:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_system_software:x5.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_system_software:x6.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_system_software:x6.1:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:cisco:telepresence_video_communication_server:*:*:control:*:*:*:*:*
cpe:2.3:h:cisco:telepresence_video_communication_server:*:*:expressway:*:*:*:*:*
cpe:2.3:h:cisco:telepresence_video_communication_server:*:*:starter_pack_express:*:*:*:*:*
EPSS
Процентиль: 62%
0.00427
Низкий
7.8 High
CVSS2
Дефекты
CWE-399
Связанные уязвимости
github
почти 4 года назад
Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a malformed SIP message, aka Bug ID CSCtr20426.
EPSS
Процентиль: 62%
0.00427
Низкий
7.8 High
CVSS2
Дефекты
CWE-399