Rapid7 Vulnerability & Exploit Database

Cisco TelePresence: Cisco TelePresence Server Denial of Service Vulnerability (CVE-2015-6284)

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

Cisco TelePresence: Cisco TelePresence Server Denial of Service Vulnerability (CVE-2015-6284)

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

09/20/2015

Created

07/25/2018

Added

12/08/2015

Modified

12/08/2015

Description

Buffer overflow in the Conference Control Protocol API implementation in Cisco TelePresence Server software before 4.1(2.33) on 7010, MSE 8710, Multiparty Media 310 and 320, and Virtual Machine devices allows remote attackers to cause a denial of service (device crash) via a crafted URL, aka Bug ID CSCuu28277.

Solution(s)

cisco-telepresence-upgrade-latest

References

https://attackerkb.com/topics/cve-2015-6284
CVE - 2015-6284
Category I
V0061475
2015-A-0224
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150916-tps

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Cisco TelePresence: Cisco TelePresence Server Denial of Service Vulnerability (CVE-2015-6284)

Cisco TelePresence: Cisco TelePresence Server Denial of Service Vulnerability (CVE-2015-6284)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.