CVE-2015-6284

Public PoC / Exploit

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in the Conference Control Protocol API implementation in Cisco TelePresence Server software before 4.1(2.33) on 7010, MSE 8710, Multiparty Media 310 and 320, and Virtual Machine devices allows remote attackers to cause a denial of service (device crash) via a crafted URL, aka Bug ID CSCuu28277.

Weaknesses (CWE)

CWE-119

Affected Products (20)

cisco · telepresence_server_softwarevulnerable

cisco · telepresence_server_software

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150916-tps

Vendor Advisory

http://www.securitytracker.com/id/1033580

Third Party AdvisoryVDB Entry

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150916-tps

Vendor Advisory

http://www.securitytracker.com/id/1033580

Third Party AdvisoryVDB Entry