Cisco TelePresence Video Communication Server (VCS) X8.5RC4 allows remote attackers to cause a denial of service (CPU consumption or device outage) via a crafted SDP parameter-negotiation request in an SDP session during a SIP connection, aka Bug ID CSCut42422.
http://www.securitytracker.com/id/1032540
http://tools.cisco.com/security/center/viewAlert.x?alertId=39240