PT-2011-2301 · Cisco · Cisco Telepresence Manager+3
Publicado
2011-02-25
·
Atualizado
2011-04-09
·
CVE-2011-0379
CVSS v2.0
7.9
Alta
| Vetor | AV:A/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 1.6.x
Cisco TelePresence Multipoint Switch (CTMS) devices versions 1.0.x through 1.6.x
Cisco TelePresence endpoint devices versions 1.2.x through 1.6.x
Cisco TelePresence Manager versions 1.2.x through 1.6.2
Description
A buffer overflow issue allows remote attackers to execute arbitrary code via a crafted Cisco Discovery Protocol packet.
Recommendations
For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 1.6.x, update the software to a version that is not affected by this issue.
For Cisco TelePresence Multipoint Switch (CTMS) devices versions 1.0.x through 1.6.x, update the software to a version that is not affected by this issue.
For Cisco TelePresence endpoint devices versions 1.2.x through 1.6.x, update the software to a version that is not affected by this issue.
For Cisco TelePresence Manager versions 1.2.x through 1.6.2, update the software to a version that is not affected by this issue.
Correção
RCE
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Asa
Cisco Telepresence Manager
Cisco Telepresence Multipoint Switch
Cisco Telepresence Endpoint