Cisco TelePresence Video Communication Server SIP DoS

High Nessus Plugin ID 72185

Synopsis

The remote device is affected by a denial of service vulnerability.

Description

According to the self-reported version returned by the remote device, it is affected by a vulnerability that could allow an unauthorized user to cause a denial of service via a specially crafted SDP message.

Solution

Upgrade to the appropriate software version per the vendor's advisory.

See Also

http://www.nessus.org/u?fc4e53b1

https://tools.cisco.com/security/center/viewAlert.x?alertId=32459

Plugin Details

Severity: High

ID: 72185

File Name: cisco-sa-20140122-vcs.nasl

Version: 1.9

Type: remote

Family: CISCO

Published: 2014/01/28

Updated: 2018/11/15

Dependencies: 72182

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 7.1

Temporal Score: 5.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:cisco:telepresence_video_communication_servers_software, cpe:/a:cisco:telepresence_video_communication_server_software

Required KB Items: Cisco/TelePresence_VCS/Version

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2014/01/22

Vulnerability Publication Date: 2014/01/22

Reference Information

CVE: CVE-2014-0662

BID: 65076

CISCO-BUG-ID: CSCue97632

CISCO-SA: cisco-sa-20140122-vcs