[c-nsp] Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence TC and TE Software

Cisco Systems Product Security Incident Response Team psirt at cisco.com
Wed May 13 12:07:39 EDT 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence TC and TE Software

Advisory ID: cisco-sa-20150513-tc

Revision 1.0

For Public Release 2015 May 13 16:00  UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

Cisco TelePresence TC and TE Software contains the following vulnerabilities:

    Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability
    Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability


Successful exploitation of the Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability could allow an attacker to bypass system authentication and access the device with the privileges of the root user.

Successful exploitation of the Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability could allow an attacker to restart several processes and possibly trigger a reload of the affected system.

Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are not available. This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - https://gpgtools.org
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=CfBI
-----END PGP SIGNATURE-----


More information about the cisco-nsp mailing list