PT-2011-3935 · Cisco · Cisco Telepresence C Series Endpoints+2

David Klein

Published

2011-08-31

Updated

2018-10-09

CVE-2011-2577

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco TelePresence C Series Endpoints, E/EX Personal Video units, and MXP Series Codecs versions prior to TC 4.0.0 or F9.1

Description The issue allows remote attackers to cause a denial of service (crash) via a crafted SIP packet to port 5060 or 5061.

Recommendations For versions prior to TC 4.0.0, update to TC 4.0.0 or later to resolve the issue. For versions prior to F9.1, update to F9.1 or later to resolve the issue. As a temporary workaround, consider restricting access to ports 5060 and 5061 to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2011-2577

Affected Products

Cisco Telepresence C Series Endpoints

E/Ex Personal Video Units

Mxp Series Codecs

PT-2011-3935 · Cisco · Cisco Telepresence C Series Endpoints+2

CVE-2011-2577

Related Identifiers

Affected Products

References · 10