Vulnerability Description
Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320, and 820; and Virtual Machine (VM) devices allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted HTTP requests that are not followed by an unspecified negotiation, aka Bug ID CSCuv47565.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Opensolaris | snv_124 |
| Zyxel | Gs1900-10Hp Firmware | < 2.50\(aazi.0\)c0 |
| Zzinc | Keymouse Firmware | 3.08 |
| Cisco | Telepresence Server 7010 | - |
| Cisco | Telepresence Server Mse 8710 | - |
| Cisco | Telepresence Server On Multiparty Media 310 | - |
| Cisco | Telepresence Server On Multiparty Media 320 | - |
| Cisco | Telepresence Server On Multiparty Media 820 | - |
| Cisco | Telepresence Server On Virtual Machine | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
- http://www.securitytracker.com/id/1035501
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
- http://www.securitytracker.com/id/1035501
FAQ
What is CVE-2015-6313?
CVE-2015-6313 is a vulnerability with a CVSS score of 7.5 (HIGH). Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320, and 820; and Virtual Machine (VM) devices allows remote attackers to caus...
How severe is CVE-2015-6313?
CVE-2015-6313 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-6313?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Opensolaris, Zyxel Gs1900-10Hp Firmware, Zzinc Keymouse Firmware, Cisco Telepresence Server 7010, Cisco Telepresence Server Mse 8710.