EUVD-2015-4280

Malware in sbrugna...

Cisco TelePresence MCU Fragmented Packets Reassembly RCE

According to the self-reported version, the remote Cisco TelePresence Multipoint Control Unit MCU device is affected by a buffer overflow condition that occurs when reassembling fragmented IPv4 and IPv6 packets due to improper size validation. An unauthenticated, remote attacker can exploit this...

CVE-2017-3792

A vulnerability in a proprietary device driver in the kernel of Cisco TelePresence Multipoint Control Unit MCU Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service DoS condition. The vulnerability is due to improper size validation when...

Cisco Warns of Critical Flaw in Teleconferencing Gear

Cisco Systems is warning customers of a critical vulnerability affecting three of its TelePresence MCU platform models. The flaw could give attackers the ability to remotely execute code on impacted systems or create conditions favorable to a denial-of-service DoS attack. According to an advisory...

Cisco TelePresence MCU 4500 Device Cross-Site Request Forgery Vulnerability

The Cisco TelePresence MCU 4500 is a multimedia conferencing bridge product. A cross-site request forgery vulnerability exists in the Cisco TelePresence MCU 4500 device, which allows remote attackers to construct malicious URIs, trick users into parsing them, and can perform malicious actions in...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability on Cisco TelePresence MCU 4500 devices with software 4.51.55 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu90710...

CVE-2015-4257

Cross-site request forgery CSRF vulnerability on Cisco TelePresence MCU 4500 devices with software 4.51.55 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu90710...

Cisco TelePresence MCU Series Devices Multiple Vulnerabilities in OpenSSL

The remote Cisco TelePresence MCU device is running a software version known to be affected by multiple OpenSSL related vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce disclosure via the 'FLUSH+RELOAD...

Cisco TelePresence Multipoint Control Unit Detection

Nessus determined that the remote host is a multipoint control unit video teleconferencing device. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69046; scriptversion"1.7"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/09/22"; scriptxrefname:"IAVT...

Design/Logic Flaw

The DSP card on Cisco TelePresence MCU 4500 and 4501 devices before 4.32.30, TelePresence MCU MSE 8510 devices before 4.32.30, and TelePresence Server before 2.31.55 does not properly validate H.264 data, which allows remote attackers to cause a denial of service device reload via crafted RTP...