cisco-sa-20140122-vcs

Cisco TelePresence Video Communication Server SIP Denial of Service Vulnerability

cisco-sa-20140122-vcs · High · Published 12 years ago · Updated 12 years ago

Cisco TelePresence Video Communication Server (VCS) contains a vulnerability that could allow an unauthenticated, remote attacker to trigger the failure of several critical processes which may cause active call to be dropped and prevent users from making new calls until the affected system is reloaded. Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140122-vcs

Cisco advisory · CSAF JSON

Workarounds

There are no workarounds that mitigate this vulnerability.

Additional mitigations that can be deployed on Cisco devices within the network are available in the Cisco Applied Intelligence companion document for this Advisory: http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=32409

["http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=32409"]

CVEs	CVE-2014-0662
Cisco Bug IDs	CSCue97632
CVSS Score	Base 7.1 Base 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source	Cisco TelePresence Video Communication Server (VCS)

Related Products

Product	CVE	Evidence
Cisco TelePresence Video Communication Server (VCS)	CVE-2014-0662	Cisco OpenVuln
Cisco TelePresence	CVE-2014-0662	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Cisco TelePresence Video Communication Server SIP Denial of Service Vulnerability

Workarounds

Related Products