Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.806650 |
Category: | CISCO |
Title: | Cisco TelePresence VCS and VCS Expressway Multiple Vulnerabilities Dec15 |
Summary: | This host is running Cisco TelePresence; Video Communication Server and is prone to multiple vulnerabilities. |
Description: | Summary: This host is running Cisco TelePresence Video Communication Server and is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - The use of the same encryption key across different customer. - The missing authorization checks on certain administrative pages. Vulnerability Impact: Successful exploitation will allow attacker to read and disclose certain sensitive data, and upload TLP files changing contents of VCS. Affected Software/OS: Cisco TelePresence Video Communication Server (VCS) version X8.6 Cisco TelePresence Video Communication Server (VCS) Expressway version X8.6 Solution: Apply updates from Vendor. See the references for more details. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N |
Cross-Ref: |
BugTraq ID: 79088 BugTraq ID: 79065 Common Vulnerability Exposure (CVE) ID: CVE-2015-6414 http://www.securityfocus.com/bid/79065 Cisco Security Advisory: 20151210 Cisco TelePresence Video Communication Server Information Disclosure Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-tvcs http://www.securitytracker.com/id/1034429 Common Vulnerability Exposure (CVE) ID: CVE-2015-6413 http://www.securityfocus.com/bid/79088 Cisco Security Advisory: 20151209 Cisco TelePresence Video Communication Server Expressway Web Framework Code Unauthorized Access Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-tvc http://www.securitytracker.com/id/1034378 |
Copyright | Copyright (C) 2015 Greenbone Networks GmbH |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |