فا

‫ Cisco TelePresence Server OpenSSL Multiple Vulnerabilities

IRCAD2014063371

Number: IRCAD2014063371

Date: 2014/06/11

Criticality level: highly critical

Software:

Cisco TelePresence Server 2.x

Cisco TelePresence Server 3.x

Cisco TelePresence Server 4.x

Description

Cisco has acknowledged a security issue and multiple vulnerabilities in Cisco TelePresence Server, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

The security issue and the vulnerabilities are caused due to a bundled vulnerable version of OpenSSL.

The security issue and the vulnerabilities are reported in the following products (please see the vendor's advisory for the affected versions):

* Cisco TelePresence Server 8710 and 7010

* Cisco TelePresence Server on Multiparty Media 310 and 320

* Cisco TelePresence Server on Virtual Machine

Solution:

No official solution is currently available.

Resources:

Cisco (CSCup22629):

secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 25 خرداد 1393

امتیاز

امتیاز شما
تعداد امتیازها: 0