CVE-2017-3792

Name of the Vulnerable Software and Affected Versions Cisco TelePresence MCU platforms versions 4.3(1.68) or later

Description A vulnerability in the kernel of Cisco TelePresence Multipoint Control Unit (MCU) Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition. The issue is due to improper size validation when reassembling fragmented IPv4 or IPv6 packets. An attacker could exploit this by sending crafted IPv4 or IPv6 fragments to a port receiving content in Passthrough content mode, potentially overflowing a buffer and allowing the execution of arbitrary code or causing a DoS condition.

Recommendations For Cisco TelePresence MCU platforms version 4.3(1.68) or later, update to the latest software version that addresses this vulnerability. As a temporary mitigation, consider restricting the use of Passthrough content mode until a patch is applied. Additionally, apply available mitigations as recommended by Cisco to minimize the risk of exploitation.