CVE-2015-6313

Published: Apr 6, 2016Modified: May 6, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320, and 820; and Virtual Machine (VM) devices allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted HTTP requests that are not followed by an unspecified negotiation, aka Bug ID CSCuv47565.

Affected (3)

Products: Sun: Opensolaris · Zyxel: Gs1900 10hp Firmware · Zzinc: Keymouse Firmware

1 product

1 product

1 product

Configuration A

3 vulnerable · 6 platform

Vulnerable Software	Affected Versions
Sun Opensolaris	Version snv_124
Zyxel Gs1900 10hp Firmware	Before 2.50\(aazi.0\)c0
Zzinc Keymouse Firmware	Version 3.08

Running on/with	Platform Versions
Cisco Telepresence Server 7010	All versions
Cisco Telepresence Server Mse 8710	All versions
Cisco Telepresence Server On Multiparty Media 310	All versions
Cisco Telepresence Server On Multiparty Media 320	All versions
Cisco Telepresence Server On Multiparty Media 820	All versions
Cisco Telepresence Server On Virtual Machine	All versions

Related CWEs

CWE-399

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-cts1

Source: psirt@cisco.com

Vendor Advisory

http://www.securitytracker.com/id/1035501

Source: psirt@cisco.com

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-cts1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1035501

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.