Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20150715-VDS
HistoryJul 15, 2015 - 4:00 p.m.

Cisco Videoscape Delivery System Denial of Service Vulnerability

2015-07-1516:00:00
tools.cisco.com
21

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

43.4%

JSON

A vulnerability in the HTTP processing module of the Cisco Videoscape Distribution Suite for Internet Streaming (VDS-IS) and Cisco Videoscape Distribution Suite Service Broker (VDS-SB) could allow an unauthenticated, remote attacker to cause a reload of the affected device.

The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by sending a crafted HTTP request to a vulnerable device. An exploit could allow the attacker to cause a denial of service (DoS) condition.

There is no workaround that mitigates this vulnerability.

Cisco has released software updates that address this vulnerability for Cisco VDS-IS.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150715-vds[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150715-vds”]

Affected configurations

Vulners
Node
ciscovideoscape_distribution_suite_for_internet_streamingMatchany
OR
ciscovideoscape_distribution_suite_service_brokerMatchany
OR
ciscovideoscape_distribution_suite_for_internet_streamingMatchany
OR
ciscovideoscape_distribution_suite_service_brokerMatchany
VendorProductVersionCPE
ciscovideoscape_distribution_suite_for_internet_streaminganycpe:2.3:a:cisco:videoscape_distribution_suite_for_internet_streaming:any:*:*:*:*:*:*:*
ciscovideoscape_distribution_suite_service_brokeranycpe:2.3:a:cisco:videoscape_distribution_suite_service_broker:any:*:*:*:*:*:*:*

Related

securityvulns 1
nvd 1
cve 1
cvelist 1
prion 1
securityvulns
securityvulns
Cisco Videoscape Delivery System DoS
2015-07-27 00:00:00
nvd
nvd
CVE-2015-0725
2015-07-16 21:59:00
cve
cve
CVE-2015-0725
2015-07-16 21:59:00
cvelist
cvelist
CVE-2015-0725
2015-07-16 21:00:00
prion
prion
Code injection
2015-07-16 21:59:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

43.4%

JSON
Related for CISCO-SA-20150715-VDS
securityvulns1nvd1cve1cvelist1prion1