Detections
Analytics

Cisco TelePresence TC and TE Software Multiple Vulnerabilities (cisco-sa-20140430-tcte)

critical Nessus Plugin ID 73916

Language:

Synopsis

The remote host is missing a vendor-supplied security patch.

Description

The version of Cisco TelePresence TC or TE software running on the remote host is affected by one or more of the following issues :

 - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending crafted SIP packets. (CVE-2014-2162 / CSCud29566)

 - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending crafted SIP packets. (CVE-2014-2163 / CSCua64961)

 - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending crafted SIP packets. (CVE-2014-2164 / CSCuj94651)

 - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending crafted SIP packets. (CVE-2014-2165 / CSCtq72699)

 - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending crafted SIP packets. (CVE-2014-2166 / CSCto70562)

 - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending crafted SIP packets. (CVE-2014-2167 / CSCua86589)

 - A remote code execution vulnerability exists due to a buffer overflow in Cisco TelePresence TC and TE software, potentially allowing a remote attacker to execute arbitrary code by sending crafted DNS response packets. (CVE-2014-2168 / CSCty44804)

 - A remote command execution vulnerability exists due to a failure to sanitize user-supplied input to internal scripts, potentially allowing an authenticated attacker to execute arbitrary commands. (CVE-2014-2169 / CSCue60211)

 - A remote command execution vulnerability exists due to a failure to sanitize user-supplied input to tshell scripts, potentially allowing an authenticated attacker to execute arbitrary commands. (CVE-2014-2170 / CSCue60202)

 - A remote code execution vulnerability exists that potentially allows remote attackers to execute arbitrary code via crafted SIP packets. (CVE-2014-2171 / CSCud81796)

 - A privilege escalation vulnerability exists due to a buffer overflow in Cisco TelePresence TC and TE software, potentially allowing local attackers to gain privileges. (CVE-2014-2172 / CSCub67693)

 - A privilege escalation vulnerability exists due to improperly restricting access to the serial port, potentially allowing local attackers to gain privileges via unspecified commands. (CVE-2014-2173 / CSCub67692)

 - A denial of service vulnerability exists that potentially allows remote attackers to trigger memory consumption via crafted H.225 packets.
 (CVE-2014-2175 / CSCtq78849)

Solution

Upgrade to the relevant Cisco TelePresence TC or TE software version referenced in Cisco Security Advisory cisco-sa-20140430-tcte.

See Also

http://www.nessus.org/u?9a8464ea

Plugin Details

Severity: Critical

ID: 73916

File Name: cisco-sa-20140430-tcte.nasl

Version: 1.4

Type: remote

Family: CISCO

Published: 5/8/2014

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:cisco:telepresence_tc_software, cpe:/a:cisco:telepresence_te_software

Required KB Items: Cisco/TelePresence_MCU/Device, Cisco/TelePresence_MCU/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 4/30/2014

Vulnerability Publication Date: 4/30/2014

Reference Information

CVE: CVE-2014-2162, CVE-2014-2163, CVE-2014-2164, CVE-2014-2165, CVE-2014-2166, CVE-2014-2167, CVE-2014-2168, CVE-2014-2169, CVE-2014-2170, CVE-2014-2171, CVE-2014-2172, CVE-2014-2173, CVE-2014-2175

BID: 67170