CVE-2011-2577 – Cisco TelePresence SOS-11-010 - Multiple Vulnerabilities

https://notcve.org/view.php?id=CVE-2011-2577

Unspecified vulnerability in Cisco TelePresence C Series Endpoints, E/EX Personal Video units, and MXP Series Codecs, when using software versions before TC 4.0.0 or F9.1, allows remote attackers to cause a denial of service (crash) via a crafted SIP packet to port 5060 or 5061, aka Bug ID CSCtq46500. Una vulnerabilidad no especificada en TelePresence C Series Endpoints de Cisco, unidades E/EX Personal Video, y MXP Series Codecs, cuando se utilizan las versiones de software anterior a versiones 4.0.0 o F9.1 del TC, permite a los atacantes remotos causar una denegación de servicio (bloqueo) por medio de un paquete SIP diseñado al puerto 5060 o 5061, también se conoce como Bug ID CSCtq46500. Cisco TelePresensce Series suffers from client-side code execution, denial of service, cookie theft, loss of confidentiality, and impersonation vulnerabilities. • https://www.exploit-db.com/exploits/17871 http://securityreason.com/securityalert/8387 http://securityreason.com/securityalert/8389 http://www.cisco.com/en/US/products/products_security_advisory09186a0080b91395.shtml http://www.exploit-db.com/exploits/17871 http://www.securityfocus.com/archive/1/519698/100/0/threaded http://www.securityfocus.com/bid/49392 http://www.securitytracker.com/id?1025994 https://exchange.xforce.ibmcloud.com/vulnerabilities/69513 •