Test ID:	1.3.6.1.4.1.25623.1.0.811051
Category:	CISCO
Title:	Cisco TelePresence CE and TC Software ICMP DoS Vulnerability (cisco-sa-20170503-ctp)
Summary:	Cisco TelePresence Endpoint is prone to a denial of service (DoS) vulnerability.
Description:	Summary: Cisco TelePresence Endpoint is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The vulnerability is due to incomplete input validation for the size of a received ICMP packet. Vulnerability Impact: Successful exploitation will allow an unauthenticated, remote attacker to cause the TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. Affected Software/OS: Cisco TelePresence products when running software release CE8.1.0, CE8.0.0, CE8.1.1, CE8.2.0, CE8.2.1, CE8.2.2, CE 8.3.0, or CE8.3.1. Also TC4.2 through TC4.2.4, TC5.1.11, TC5.1.13, TC6.0.2 through TC6.0.4, TC6.1.3, TC6.1.4, TC6.3.1 through TC6.3.5, TC7.3.6, TC7.3.7, TC7.1.1 through TC7.1.4 are affected. This vulnerability affects the following Cisco TelePresence products, Spark Room OS, TelePresence DX Series, TelePresence MX Series, TelePresence SX Quick Set Series, and TelePresence SX Series. Solution: Upgrade to Cisco TelePresence Collaboration Endpoint (CE) Software release 8.3.2 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3825 BugTraq ID: 98293 http://www.securityfocus.com/bid/98293 http://www.securitytracker.com/id/1038392
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.