Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.CISCO-CSCUV00604-TC.NASL
HistorySep 10, 2015 - 12:00 a.m.

Cisco TelePresence TC Software Parameter Authentication Bypass (CSCuv00604)

2015-09-1000:00:00
This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

EPSS

0.002

Percentile

55.3%

JSON

The version of Cisco TelePresence TC software running on the remote host is affected by an unspecified flaw due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this to bypass authentication mechanisms by sending multiple request parameters to the affected host.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(85895);
  script_version("1.4");
  script_cvs_date("Date: 2018/07/02 18:48:54");

  script_cve_id("CVE-2015-4271");
  script_bugtraq_id(75939);
  script_xref(name:"CISCO-BUG-ID", value:"CSCuv00604");

  script_name(english:"Cisco TelePresence TC Software Parameter Authentication Bypass (CSCuv00604)");
  script_summary(english:"Checks the software version.");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a vendor-supplied security patch.");
  script_set_attribute(attribute:"description", value:
"The version of Cisco TelePresence TC software running on the remote
host is affected by an unspecified flaw due to improper validation of
user-supplied input. An unauthenticated, remote attacker can exploit
this to bypass authentication mechanisms by sending multiple request
parameters to the affected host.");
  script_set_attribute(attribute:"see_also", value:"https://tools.cisco.com/security/center/viewAlert.x?alertId=39880");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch referenced in Cisco bug ID CSCuv00604.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/07/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/07/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/09/10");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:telepresence_tc_software");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CISCO");

  script_copyright(english:"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("cisco_telepresence_mcu_detect.nasl");
  script_require_keys("Cisco/TelePresence_MCU/Device", "Cisco/TelePresence_MCU/Version");
  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

app_name = "Cisco TelePresence TC software";
device = get_kb_item_or_exit("Cisco/TelePresence_MCU/Device");
version = get_kb_item_or_exit("Cisco/TelePresence_MCU/Version");

# Integrator C Series only :
# TelePresence Codec C90
# TelePresence Codec C60
# TelePresence Codec C40
# TelePresence System Integrator Package C90
# TelePresence System Integrator Package C60
# TelePresence System Integrator Package C40
# TelePresence System Quick Set C20
if (
  device !~ " C20($|[ \n\r])" &&
  device !~ " C40($|[ \n\r])" &&
  device !~ " C60($|[ \n\r])" &&
  device !~ " C90($|[ \n\r])"
) audit(AUDIT_HOST_NOT, "an affected Cisco TelePresence device");

short_version = eregmatch(pattern: "^TC(\d+(?:\.\d+)*)", string:version);
if (isnull(short_version))
  audit(AUDIT_UNKNOWN_APP_VER, app_name);
else
  short_version = short_version[1];

if (short_version =~ "^7(\.3)?$") audit(AUDIT_VER_NOT_GRANULAR, app_name, short_version);
if (short_version !~ "^7\.3\.") audit(AUDIT_HOST_NOT, "running version 7.3.x");

if (ver_compare(ver:short_version, fix:'7.3.4', strict:FALSE) == -1)
{
  port = 0;
  if (report_verbosity > 0)
  {
    report = '\n  Detected version : ' + version +
             '\n  Fixed version    : See solution.' +
             '\n  Cisco bug ID     : CSCuv00604' +
             '\n';
    security_warning(port:port, extra:report);
  }
  else security_warning(port);
  exit(0);
}
else audit(AUDIT_INST_VER_NOT_VULN, app_name, version);

Related

cvelist 1
cisco 1
nvd 1
openvas 1
prion 1
cve 1
cvelist
cvelist
CVE-2015-4271
2015-07-15 18:00:00
cisco
cisco
Cisco TelePresence Integrator C Series Multiple Request Parameter Vulnerability
2015-07-14 12:42:06
nvd
nvd
CVE-2015-4271
2015-07-15 18:59:00
openvas
openvas
Cisco TelePresence Integrator C Series Authentication Bypass Vulnerability
2015-09-11 00:00:00
prion
prion
Authentication flaw
2015-07-15 18:59:00
cve
cve
CVE-2015-4271
2015-07-15 18:59:00

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

EPSS

0.002

Percentile

55.3%

JSON
Related for CISCO-CSCUV00604-TC.NASL
cvelist1cisco1nvd1openvas1prion1cve1