Multiple vulnerabilities in Cisco products

Описание

Multiple serious vulnerabilities have been found in Cisco products.

Below is a complete list of vulnerabilities

1. Improper serial port restrictions in Cisco Virtual TelePresence Server Software can be exploited locally via a specially designed OS commands;
2. An unknown vulnerability in Cisco CSS can be exploited remotely via a specially designed SSH packets;
3. Improper DNS implementation in Cisco VDS-IS can be exploited remotely via a specially designed packets;
4. XSS vulnerability in Cisco WebEx Meetings Server can be exploited remotely via an unspecified vectors.

Первичный источник обнаружения

Связанные продукты

• Cisco-WebEx-Meetings-Server
• Cisco-Videoscape-Distribution-Suite-for-Internet-Streaming
• Cisco-Virtual-TelePresence-Server

Список CVE

• CVE-2015-0671
  critical
• CVE-2015-0668
  warning
• CVE-2015-0660
  high
• CVE-2015-0667
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com