Denial of Service Vulnerability in Cisco TelePresence Server
CVE-2016-1346

5.9MEDIUM

Key Information:

Vendor: Dell
Status: Emc Powerscale Onefs; Jr6150 Firmware; X14j Firmware; Gs1900-10HP Firmware
Vendor: CVE Published:; 6 April 2016

Summary

The vulnerability exists in the kernel of the Cisco TelePresence Server, affecting versions 3.0 through 4.2(4.18) on Mobility Services Engine (MSE) 8710 devices. Remote attackers can exploit this issue by sending a specially crafted sequence of IPv6 packets, leading to denial of service through system panic and reboot. This flaw may compromise the availability of services relying on the affected products.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1035499

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 6, 2016
Vulnerability Reserved
Jan 4, 2016