Lucene search
HistorySep 20, 2015 - 2:59 p.m.
CVE-2015-6284
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
48.6%
Buffer overflow in the Conference Control Protocol API implementation in Cisco TelePresence Server software before 4.1(2.33) on 7010, MSE 8710, Multiparty Media 310 and 320, and Virtual Machine devices allows remote attackers to cause a denial of service (device crash) via a crafted URL, aka Bug ID CSCuu28277.
Affected configurations
Node
ciscotelepresence_server_softwareMatch2.3\(1.55\)
ORciscotelepresence_server_softwareMatch2.3\(1.57\)
ORciscotelepresence_server_softwareMatch3.0\(2.24\)
ORciscotelepresence_server_softwareMatch3.0\(2.46\)
ORciscotelepresence_server_softwareMatch3.0\(2.48\)
ORciscotelepresence_server_softwareMatch3.0\(2.49\)
ORciscotelepresence_server_softwareMatch3.1\(1.80\)
ORciscotelepresence_server_softwareMatch3.1\(1.82\)
ORciscotelepresence_server_softwareMatch3.1\(1.95\)
ORciscotelepresence_server_softwareMatch3.1\(1.96\)
ORciscotelepresence_server_softwareMatch3.1\(1.97\)
ORciscotelepresence_server_softwareMatch3.1\(1.98\)
ORciscotelepresence_server_softwareMatch4.0\(1.57\)
ORciscotelepresence_server_softwareMatch4.0\(2.8\)
ORciscotelepresence_server_softwareMatch4.1\(1.79\)
ciscotelepresence_server_7010Match-
ORciscotelepresence_server_mse_8710Match-
ORciscotelepresence_server_on_multiparty_media_310Match-
ORciscotelepresence_server_on_multiparty_media_320Match-
ORciscotelepresence_server_on_virtual_machineMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | telepresence_server_software | 2.3(1.55) | cpe:2.3:a:cisco:telepresence_server_software:2.3\(1.55\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 2.3(1.57) | cpe:2.3:a:cisco:telepresence_server_software:2.3\(1.57\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.0(2.24) | cpe:2.3:a:cisco:telepresence_server_software:3.0\(2.24\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.0(2.46) | cpe:2.3:a:cisco:telepresence_server_software:3.0\(2.46\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.0(2.48) | cpe:2.3:a:cisco:telepresence_server_software:3.0\(2.48\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.0(2.49) | cpe:2.3:a:cisco:telepresence_server_software:3.0\(2.49\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.1(1.80) | cpe:2.3:a:cisco:telepresence_server_software:3.1\(1.80\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.1(1.82) | cpe:2.3:a:cisco:telepresence_server_software:3.1\(1.82\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.1(1.95) | cpe:2.3:a:cisco:telepresence_server_software:3.1\(1.95\):*:*:*:*:*:*:* |
| cisco | telepresence_server_software | 3.1(1.96) | cpe:2.3:a:cisco:telepresence_server_software:3.1\(1.96\):*:*:*:*:*:*:* |
Related
prion
prion
Buffer overflow
2015-09-20 14:59:00
securityvulns
securityvulns
Cisco TelePresence Server DoS
2015-10-12 00:00:00
openvas
openvas
nessus
nessus
cvelist
cvelist
CVE-2015-6284
2015-09-20 14:00:00
cve
cve
CVE-2015-6284
2015-09-20 14:59:02
cisco
cisco
Cisco TelePresence Server Denial of Service Vulnerability
2015-09-16 16:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
48.6%
Related for NVD:CVE-2015-6284