Lucene search

CiscoCVE-2012-5416

HistoryNov 02, 2012 - 4:46 a.m.

CVE-2012-5416

2012-11-0204:46:09

CWE-119

cisco

web.nvd.nist.gov

cisco

meetingplace

buffer overflow

denial of service

cve-2012-5416

nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

7.1

Confidence

High

EPSS

0.005

Percentile

76.9%

JSON

Buffer overflow in Cisco Unified MeetingPlace Web Conferencing before 7.1MR1 Patch 1, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 allows remote attackers to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua66341.

Affected configurations

Nvd

Node

ciscounified_meetingplaceRange≤7.1mr1

ciscounified_meetingplaceMatch7.0

ciscounified_meetingplaceMatch7.0.1

ciscounified_meetingplaceMatch7.0.2

ciscounified_meetingplaceMatch7.0.2mr1

ciscounified_meetingplaceMatch7.0.3

ciscounified_meetingplaceMatch7.0.3mr2

ciscounified_meetingplaceMatch7.1

ciscounified_meetingplaceMatch8.0

ciscounified_meetingplaceMatch8.0mr1

ciscounified_meetingplaceMatch8.5

ciscounified_meetingplaceMatch8.5.1

ciscounified_meetingplaceMatch8.5.2

ciscounified_meetingplaceMatch8.5.3

ciscounified_meetingplaceMatch8.5.4

VendorProductVersionCPE
ciscounified_meetingplace*cpe:2.3:a:cisco:unified_meetingplace:*:mr1:*:*:*:*:*:*
ciscounified_meetingplace7.0cpe:2.3:a:cisco:unified_meetingplace:7.0:*:*:*:*:*:*:*
ciscounified_meetingplace7.0.1cpe:2.3:a:cisco:unified_meetingplace:7.0.1:*:*:*:*:*:*:*
ciscounified_meetingplace7.0.2cpe:2.3:a:cisco:unified_meetingplace:7.0.2:*:*:*:*:*:*:*
ciscounified_meetingplace7.0.2cpe:2.3:a:cisco:unified_meetingplace:7.0.2:mr1:*:*:*:*:*:*
ciscounified_meetingplace7.0.3cpe:2.3:a:cisco:unified_meetingplace:7.0.3:*:*:*:*:*:*:*
ciscounified_meetingplace7.0.3cpe:2.3:a:cisco:unified_meetingplace:7.0.3:mr2:*:*:*:*:*:*
ciscounified_meetingplace7.1cpe:2.3:a:cisco:unified_meetingplace:7.1:*:*:*:*:*:*:*
ciscounified_meetingplace8.0cpe:2.3:a:cisco:unified_meetingplace:8.0:*:*:*:*:*:*:*
ciscounified_meetingplace8.0cpe:2.3:a:cisco:unified_meetingplace:8.0:mr1:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	unified_meetingplace	*	cpe:2.3:a:cisco:unified_meetingplace::mr1::::::*
cisco	unified_meetingplace	7.0	cpe:2.3:a:cisco:unified_meetingplace:7.0:::::::*
cisco	unified_meetingplace	7.0.1	cpe:2.3:a:cisco:unified_meetingplace:7.0.1:::::::*
cisco	unified_meetingplace	7.0.2	cpe:2.3:a:cisco:unified_meetingplace:7.0.2:::::::*
cisco	unified_meetingplace	7.0.2	cpe:2.3:a:cisco:unified_meetingplace:7.0.2:mr1::::::
cisco	unified_meetingplace	7.0.3	cpe:2.3:a:cisco:unified_meetingplace:7.0.3:::::::*
cisco	unified_meetingplace	7.0.3	cpe:2.3:a:cisco:unified_meetingplace:7.0.3:mr2::::::
cisco	unified_meetingplace	7.1	cpe:2.3:a:cisco:unified_meetingplace:7.1:::::::*
cisco	unified_meetingplace	8.0	cpe:2.3:a:cisco:unified_meetingplace:8.0:::::::*
cisco	unified_meetingplace	8.0	cpe:2.3:a:cisco:unified_meetingplace:8.0:mr1::::::

Rows per page:

1-10 of 151

References

osvdb.org/86859

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121031-mp

exchange.xforce.ibmcloud.com/vulnerabilities/79721

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

7.1

Confidence

High

EPSS

0.005

Percentile

76.9%

JSON

Related for CVE-2012-5416