This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Cisco First view 2012-07-12
Product Telepresence Multipoint Switch Software Last view 2012-07-12
Version 1.7.1(15) Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:cisco:telepresence_multipoint_switch_software

Activity : Overall

Related : CVE

  Date Alert Description
7.8 2012-07-12 CVE-2012-3073

The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to cause a denial of service (networking outage or process crash) via (1) malformed IP packets, (2) a high rate of TCP connection requests, or (3) a high rate of TCP connection terminations, aka Bug IDs CSCti21830, CSCti21851, CSCtj19100, CSCtj19086, CSCtj19078, CSCty11219, CSCty11299, CSCty11323, and CSCty11338.
8.3 2012-07-12 CVE-2012-2486

The Cisco Discovery Protocol (CDP) implementation on Cisco TelePresence Multipoint Switch before 1.9.0, Cisco TelePresence Immersive Endpoint Devices before 1.9.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server before 1.8.1 allows remote attackers to execute arbitrary code by leveraging certain adjacency and sending a malformed CDP packet, aka Bug IDs CSCtz40953, CSCtz40947, CSCtz40965, and CSCtz40953.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')

Information Assurance Vulnerability Management (IAVM)

id Description
2012-B-0070 Multiple Vulnerabilities in Cisco TelePresence
Severity: Category I - VMSKEY: V0033371

Nessus® Vulnerability Scanner

id Description
2013-09-20 Name: The remote host is missing a vendor-supplied security patch.
File: cisco-sa-20120711-ctms.nasl - Type: ACT_GATHER_INFO