CVE-2015-0620

Currently unrated

Key Information:

Vendor
Cisco
Status
Telepresence Management Suite
Vendor
CVE Published:
18 February 2015

Summary

The XML parser in Cisco TelePresence Management Suite (TMS) 14.3(.2) and earlier does not properly handle external entities, which allows remote authenticated users to cause a denial of service via POST requests, aka Bug ID CSCus51494.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/100924
vdb-entryx_refsource_XF
http://www.securitytracker.com/id/1031753
vdb-entryx_refsource_SECTRACK
http://tools.cisco.com/security/center/viewAlert.x?alertI...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.