漏洞信息详情
Cisco多款产品设备安全漏洞
- CNNVD编号:CNNVD-201207-151
- 危害等级: 高危
- CVE编号: CVE-2012-2486
- 漏洞类型: 代码注入
- 发布时间: 2012-07-13
- 威胁类型: 特定网络环境
- 更新时间: 2012-07-13
- 厂 商: cisco
- 漏洞来源:
漏洞简介
Cisco TelePresence Multipoint Switch 1.9.0之前版本、Cisco TelePresence Immersive Endpoint Devices 1.9.1之前版本、Cisco TelePresence Manager 1.9.0之前版本和Cisco TelePresence Recording Server 1.8.1之前版本中的Cisco Discovery Protocol (CDP)实现中存在漏洞。远程攻击者可通过该漏洞利用某些邻接关系及发送恶意的CDP数据包执行任意代码。又名Bug IDs CSCtz40953,CSCtz40947,CSCtz40965和CSCtz40953。
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts
参考网址
来源: CISCO
名称: 20120711 Multiple Vulnerabilities in Cisco TelePresence Manager
链接:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctsman
来源: CISCO
名称: 20120711 Multiple Vulnerabilities in Cisco TelePresence Immersive Endpoint Devices
链接:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts
来源: CISCO
名称: 20120711 Multiple Vulnerabilities in Cisco TelePresence Recording Server
链接:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctrs
来源: CISCO
名称: 20120711 Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch
链接:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctms
来源:SECUNIA
名称:49864
链接:http://secunia.com/advisories/49864
来源:SECUNIA
名称:49879
链接:http://secunia.com/advisories/49879
来源:SECUNIA
名称:49915
链接:http://secunia.com/advisories/49915
受影响实体
- Cisco Telepresence_multipoint_switch_software:1.8.3%289%29
- Cisco Telepresence_multipoint_switch_software:1.0.4.0%2821%29
- Cisco Telepresence_recording_server:1.8.0%28160%29
- Cisco Telepresence_recording_server:1.7.2.1
- Cisco Telepresence_recording_server:1.6.1%282%29
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论