Buffer Overflow Vulnerability in Cisco TelePresence TC and TE Software
CVE-2014-2168

Currently unrated

Key Information:

Vendor: Cisco
Status: Telepresence Te Software
Vendor: CVE Published:; 2 May 2014

Summary

A buffer overflow vulnerability exists in Cisco TelePresence TC and TE Software versions 4.x and 5.x, as well as TE Software version 6.0. This vulnerability allows remote attackers to execute arbitrary code through specially crafted DNS response packets. Successful exploitation could lead to unauthorized access and control of the affected systems. Users are encouraged to apply the appropriate patches to mitigate the risk associated with this vulnerability.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 2, 2014
Vulnerability Reserved
Feb 25, 2014