Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability

Published: 2013-05-16. Last Updated: 2013-05-16 11:06:27 UTC
by Joel Esler (Version: 2)
1 comment(s)

Cisco TelePresence Supervisor MSE 8050 contains a vulnerability that may allow an unauthenticated, remote attacker to cause high CPU utilization and a reload of the affected system.

Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available. This advisory is available at the following link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130515-mse

-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler

Keywords:
1 comment(s)

Comments

- https://secunia.com/advisories/53388/
Release Date: 2013-05-16
Impact: DoS
Where: From local network
CVE Reference: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1236
... vulnerability is reported in versions 2.2(1.17) and prior.
Solution: Update to version 2.3(1.31).
.

Diary Archives