CVE-2015-6313

Name of the Vulnerable Software and Affected Versions Cisco TelePresence Server versions 4.1(2.29) through 4.2(4.17) Mobility Services Engine (MSE) version 8710 Multiparty Media versions 310, 320, and 820 Virtual Machine (VM) devices (affected versions not specified)

Description The issue is related to resource management errors, allowing remote attackers to cause a denial of service, either by consuming memory or causing the device to reload, via crafted HTTP requests that are not followed by an unspecified negotiation.

Recommendations For Cisco TelePresence Server versions 4.1(2.29) through 4.2(4.17), update to a version outside of this range to resolve the issue. For Mobility Services Engine (MSE) version 8710, update to a version outside of this range to resolve the issue. For Multiparty Media versions 310, 320, and 820, update to a version outside of this range to resolve the issue. For Virtual Machine (VM) devices, at the moment, there is no information about a newer version that contains a fix for this vulnerability.