Test Kennung:	1.3.6.1.4.1.25623.1.0.106543
Kategorie:	CISCO
Titel:	Cisco TelePresence Multipoint Control Unit Remote Code Execution Vulnerability
Zusammenfassung:	A vulnerability in a proprietary device driver in the kernel of Cisco;TelePresence Multipoint Control Unit (MCU) Software could allow an unauthenticated, remote attacker to execute;arbitrary code or cause a denial of service (DoS) condition.
Beschreibung:	Summary: A vulnerability in a proprietary device driver in the kernel of Cisco TelePresence Multipoint Control Unit (MCU) Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition. Vulnerability Insight: The vulnerability is due to improper size validation when reassembling fragmented IPv4 or IPv6 packets. An attacker could exploit this vulnerability by sending crafted IPv4 or IPv6 fragments to a port receiving content in Passthrough content mode. Vulnerability Impact: An exploit could allow the attacker to overflow a buffer. If successful, the attacker could execute arbitrary code or cause a DoS condition on the affected system. Solution: See the referenced vendor advisory for a solution. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3792 BugTraq ID: 95787 http://www.securityfocus.com/bid/95787 http://www.securitytracker.com/id/1037698
Copyright	Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.