Product:

Telepresence_multipoint_switch

(Cisco)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 11
Date Id Summary Products Score Patch Annotated
2012-07-12 CVE-2012-3073 The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to cause a denial of service (networking outage or process crash) via (1) malformed IP packets, (2) a high rate of TCP connection requests, or (3) a high rate of TCP connection terminations, aka Bug IDs CSCti21830, CSCti21851, CSCtj19100, CSCtj19086, CSCtj19078, CSCty11219, CSCty11299, CSCty11323,... Telepresence_manager, Telepresence_multipoint_switch, Telepresence_multipoint_switch_software, Telepresence_recording_server, Telepresence_system_1300_65, Telepresence_system_3000, Telepresence_system_3010, Telepresence_system_3200, Telepresence_system_3210, Telepresence_system_software, Telepresence_system_t3, Telepresence_system_tx1300_47, Telepresence_system_tx1310_65, Telepresence_system_tx9000, Telepresence_system_tx9200 N/A
2012-07-12 CVE-2012-2486 The Cisco Discovery Protocol (CDP) implementation on Cisco TelePresence Multipoint Switch before 1.9.0, Cisco TelePresence Immersive Endpoint Devices before 1.9.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server before 1.8.1 allows remote attackers to execute arbitrary code by leveraging certain adjacency and sending a malformed CDP packet, aka Bug IDs CSCtz40953, CSCtz40947, CSCtz40965, and CSCtz40953. Telepresence_manager, Telepresence_multipoint_switch, Telepresence_multipoint_switch_software, Telepresence_recording_server, Telepresence_system_1300_65, Telepresence_system_3000, Telepresence_system_3010, Telepresence_system_3200, Telepresence_system_3210, Telepresence_system_software, Telepresence_system_t3, Telepresence_system_tx1300_47, Telepresence_system_tx1310_65, Telepresence_system_tx9000, Telepresence_system_tx9200 N/A
2011-02-25 CVE-2011-0390 The XML-RPC implementation on Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, 1.6.x, and 1.7.0 allows remote attackers to cause a denial of service (process crash) via a crafted request, aka Bug ID CSCtj44534. Telepresence_multipoint_switch, Telepresence_multipoint_switch_software N/A
2011-02-25 CVE-2011-0389 Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allow remote attackers to cause a denial of service (process crash) via a crafted Real-Time Transport Control Protocol (RTCP) UDP packet, aka Bug ID CSCth60993. Telepresence_multipoint_switch, Telepresence_multipoint_switch_software N/A
2011-02-25 CVE-2011-0388 Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x do not properly restrict remote access to the Java servlet RMI interface, which allows remote attackers to cause a denial of service (memory consumption and web outage) via multiple crafted requests, aka Bug IDs CSCtg35830 and CSCtg35825. Telepresence_multipoint_switch, Telepresence_multipoint_switch_software, Telepresence_recording_server, Telepresence_recording_server_software N/A
2011-02-25 CVE-2011-0387 The administrative web interface on Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote authenticated users to cause a denial of service or have unspecified other impact via vectors involving access to a servlet, aka Bug ID CSCtf97164. Telepresence_multipoint_switch, Telepresence_multipoint_switch_software N/A
2011-02-25 CVE-2011-0385 The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote attackers to create or overwrite arbitrary files, and possibly execute arbitrary code, via a crafted request, aka Bug IDs CSCth85786 and CSCth61065. Telepresence_multipoint_switch, Telepresence_multipoint_switch_software, Telepresence_recording_server, Telepresence_recording_server_software N/A
2011-02-25 CVE-2011-0384 The Java Servlet framework on Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug ID CSCtf01253. Telepresence_multipoint_switch, Telepresence_multipoint_switch_software N/A
2011-02-25 CVE-2011-0383 The Java Servlet framework on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug IDs CSCtf42005 and CSCtf42008. Telepresence_multipoint_switch, Telepresence_multipoint_switch_software, Telepresence_recording_server, Telepresence_recording_server_software N/A
2011-02-25 CVE-2011-0379 Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x; and Cisco TelePresence Manager 1.2.x, 1.3.x, 1.4.x, 1.5.x, and 1.6.2 allows remote attackers to execute arbitrary code via a crafted Cisco Discovery Protocol packet, aka Bug IDs CSCtd75769, CSCtd75766, CSCtd75754, and CSCtd75761. 5500_series_adaptive_security_appliance, Adaptive_security_appliance_software, Asa_5500, Telepresence_manager, Telepresence_multipoint_switch, Telepresence_multipoint_switch_software, Telepresence_system_1000, Telepresence_system_1100, Telepresence_system_1300_series, Telepresence_system_3000, Telepresence_system_3200_series, Telepresence_system_500_series, Telepresence_system_software N/A