CVE-2016-6448
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to Release 2.0.3, Acano Server releases 1.9.x prior to Release 1.9.5, Acano Server releases 1.8.x prior to Release 1.8.17. More Information: CSCva76004. Known Affected Releases: 1.8.x 1.92.0.
Una vulnerabilidad en el analizador de Session Description Protocol (SDP) de Cisco Meeting Server podría permitir a un atacante remoto no autenticado ejecutar código arbitrario en un sistema afectado. Esta vulnerabilidad afecta a los siguientes productos: lanzamientos Cisco Meeting Server anteriores a Release 2.0.3, lanzamientos Acano Server 1.9.x anteriores a Release 1.9.5, lanzamientos Acano Server 1.8.x anteriores a Release 1.8.17. Más información: CSCva76004. Lanzamientos conocidos afectados: 1.8.x 1.92.0.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-07-26 CVE Reserved
- 2016-11-03 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/94076 | Vdb Entry | |
| http://www.securitytracker.com/id/1037181 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-cms1 | 2017-07-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 1.8.15 Search vendor "Cisco" for product "Meeting Server" and version "1.8.15" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 1.8_base Search vendor "Cisco" for product "Meeting Server" and version "1.8_base" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 1.9.0 Search vendor "Cisco" for product "Meeting Server" and version "1.9.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 1.9.2 Search vendor "Cisco" for product "Meeting Server" and version "1.9.2" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 2.0.0 Search vendor "Cisco" for product "Meeting Server" and version "2.0.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 2.0.1 Search vendor "Cisco" for product "Meeting Server" and version "2.0.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 2.0.3 Search vendor "Cisco" for product "Meeting Server" and version "2.0.3" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 2.0.4 Search vendor "Cisco" for product "Meeting Server" and version "2.0.4" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meeting Server Search vendor "Cisco" for product "Meeting Server" | 2.0.5 Search vendor "Cisco" for product "Meeting Server" and version "2.0.5" | - |
Affected
| ||||||