Denial of Service Vulnerability in Cisco TelePresence Video Communication Server
CVE-2015-4317

Currently unrated

Key Information:

Vendor: Cisco
Status: Telepresence Video Communication Server Software
Vendor: CVE Published:; 20 August 2015

What is CVE-2015-4317?

The Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 is vulnerable to a denial of service attack due to improper handling of invalid variables in authentication packets. This vulnerability allows remote attackers to disrupt service by sending specially crafted packets, potentially affecting the availability of the communication server and impacting organizations reliant on video conferencing solutions.

References

http://www.securitytracker.com/id/1033281

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/76351

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 20, 2015
Vulnerability Reserved
Jun 4, 2015