Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Cisco TelePresence vulnerable to unauthorized root access, denial of service

Cisco TelePresence vulnerable to unauthorized root access, denial of service

2015/05/14

Softpedia - (International) Cisco reported two vulnerabilities in versions of its TelePresence TC and TE video conference products in which an attacker could exploit improper authentication protocols for internal services to bypass authentication and obtain root access on the system, and a flaw in the network drivers in which an attacker could use specially crafted internet protocol (IP) packets sent at a high rate to cause a denial-of-service (DoS) condition.

Source: http://news.softpedia.com/news/Cisco-TelePresence-Vulnerable-to-Unauthorized-Root-Access-Denial-of-Service-481183.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:17