CVE-2011-2543

Currently unrated

Key Information:

Vendor: Cisco
Status: Telepresence Codec C40; Telepresence Codec C60; Telepresence Codec C90; Telepresence C Series Software
Vendor: CVE Published:; 23 September 2011

Summary

Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC4.2.0 allows remote authenticated users to cause a denial of service (endpoint reboot or process crash) or possibly execute arbitrary code via a long location parameter to the getxml program, aka Bug ID CSCtq46496.

References

http://www.securityfocus.com/bid/49670

vdb-entryx_refsource_BID

http://securityreason.com/securityalert/8393

third-party-advisoryx_refsource_SREASON

http://secunia.com/advisories/46057

third-party-advisoryx_refsource_SECUNIA

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 23, 2011
Vulnerability Reserved
Jun 27, 2011