Cisco TelePresence Multipoint Switch Media Snapshot Denial of Service Vulnerability

A vulnerability in the Media Snapshot code of Cisco TelePresence Multipoint Switch (CTMS) could allow an authenticated, remote attacker to cause the reload of the affected system, creating a denial of service (DoS) condition.

The vulnerability is due to a failure in handling requests for Media Snapshot while the meeting is terminated. An attacker could exploit this vulnerability by sending continuous requests for Media Snapshot.

Cisco has confirmed the vulnerability in a security notice; however, software updates are not available.

To exploit this vulnerability, an attacker must be able to send continuous requests to the targeted device, which may reside on trusted, internal networks that the attacker would likely need to access. In addition, the attacker must be able to authenticate to the targeted device. These access requirements may reduce the likelihood of a successful exploit.

Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.