Cisco Products Multiple Vulnerabilities

Last Update Date: 16 May 2013 18:38 Release Date: 16 May 2013 3541 Views

RISK: Medium Risk

Medium Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

Multiple vulnerabilities has been identified in Cisco Products, which can be exploited by remote users to cause denial of service conditions.

  1. Cisco Unified Communications Manager does not properly throttle authentication requests. A remote user can send multiple authentication requests in a short period of time to cause performance degradation on the target application.
  2. For the Cisco TelePresence MSE 8050 Supervisor, a remote user can send a sequence of TCP segments at a high rate to the target management IP address to cause high CPU utilization on the target system. This may result in a reload of the target system.

Impact

  • Denial of Service

System / Technologies affected

  • Cisco Unified Communications Manager
  • Cisco TelePresence MSE 8050; 2.2(1.17) and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a fix for Cisco Unified Communications Manager.
  • The vendor has issued a fix for Cisco TelePresence (MSE 8050; 2.3(1.31)).

Vulnerability Identifier

Source

Related Link

Share with

Previous

Kerberos kpasswd UDP Processing Vulnerability

16 May 2013 4019 Views

Next

BlackBerry Tablet OS Flash Player Multiple Vulnerabilities

20 May 2013 3464 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY