PT-2011-2301 · Cisco · Cisco Telepresence Manager+3
Published
2011-02-25
·
Updated
2011-04-09
·
CVE-2011-0379
CVSS v2.0
7.9
High
| Vector | AV:A/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 1.6.x
Cisco TelePresence Multipoint Switch (CTMS) devices versions 1.0.x through 1.6.x
Cisco TelePresence endpoint devices versions 1.2.x through 1.6.x
Cisco TelePresence Manager versions 1.2.x through 1.6.2
Description
A buffer overflow issue allows remote attackers to execute arbitrary code via a crafted Cisco Discovery Protocol packet.
Recommendations
For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 1.6.x, update the software to a version that is not affected by this issue.
For Cisco TelePresence Multipoint Switch (CTMS) devices versions 1.0.x through 1.6.x, update the software to a version that is not affected by this issue.
For Cisco TelePresence endpoint devices versions 1.2.x through 1.6.x, update the software to a version that is not affected by this issue.
For Cisco TelePresence Manager versions 1.2.x through 1.6.2, update the software to a version that is not affected by this issue.
Fix
RCE
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Asa
Cisco Telepresence Manager
Cisco Telepresence Multipoint Switch
Cisco Telepresence Endpoint