Rapid7 Vulnerability & Exploit Database

Cisco TelePresence: Multiple Vulnerabilities in Cisco TelePresence Devices (CVE-2011-0379)

Back to Search

Cisco TelePresence: Multiple Vulnerabilities in Cisco TelePresence Devices (CVE-2011-0379)

Severity
8
CVSS
(AV:A/AC:M/Au:N/C:C/I:C/A:C)
Published
02/25/2011
Created
07/25/2018
Added
01/23/2015
Modified
01/23/2015

Description

Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x; and Cisco TelePresence Manager 1.2.x, 1.3.x, 1.4.x, 1.5.x, and 1.6.2 allows remote attackers to execute arbitrary code via a crafted Cisco Discovery Protocol packet, aka Bug IDs CSCtd75769, CSCtd75766, CSCtd75754, and CSCtd75761.

Solution(s)

  • cisco-telepresence-upgrade-latest

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;