Vulnerabilities > Cisco > Telepresence TC Software > 4.0.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-05-02 | CVE-2014-2175 | Improper Input Validation vulnerability in Cisco Telepresence TC Software and Telepresence TE Software Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allow remote attackers to cause a denial of service (memory consumption) via crafted H.225 packets, aka Bug ID CSCtq78849. | 7.8 |
| 2014-05-02 | CVE-2014-2173 | Permissions, Privileges, and Access Controls vulnerability in Cisco Telepresence TC Software and Telepresence TE Software Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 do not properly restrict access to the serial port, which allows local users to gain privileges via unspecified commands, aka Bug ID CSCub67692. | 7.2 |
| 2014-05-02 | CVE-2014-2172 | Buffer Errors vulnerability in Cisco Telepresence TC Software and Telepresence TE Software Buffer overflow in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows local users to gain privileges by leveraging improper handling of the u-boot compiler flag for internal executable files, aka Bug ID CSCub67693. | 6.6 |
| 2014-05-02 | CVE-2014-2171 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco Telepresence TC Software and Telepresence TE Software Heap-based buffer overflow in Cisco TelePresence TC Software 4.x through 6.x before 6.0.1 and TE Software 4.x and 6.0.x before 6.0.2 allows remote attackers to execute arbitrary code via crafted SIP packets, aka Bug ID CSCud81796. | 10.0 |
| 2014-05-02 | CVE-2014-2170 | Code Injection vulnerability in Cisco Telepresence TC Software and Telepresence TE Software Cisco TelePresence TC Software 4.x and 5.x before 5.1.7 and 6.x before 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell (aka tcsh) scripts, aka Bug ID CSCue60202. | 9.0 |
| 2014-05-02 | CVE-2014-2169 | Improper Input Validation vulnerability in Cisco Telepresence TC Software and Telepresence TE Software Cisco TelePresence TC Software 4.x through 6.x before 6.2.0 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to internal system scripts, aka Bug ID CSCue60211. | 9.0 |
| 2014-05-02 | CVE-2014-2168 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco Telepresence TC Software and Telepresence TE Software Buffer overflow in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to execute arbitrary code via crafted DNS response packets, aka Bug ID CSCty44804. | 7.6 |
| 2014-05-02 | CVE-2014-2167 | Improper Input Validation vulnerability in Cisco Telepresence TC Software and Telepresence TE Software The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCua86589. | 7.8 |
| 2014-05-02 | CVE-2014-2166 | Improper Input Validation vulnerability in Cisco Telepresence TC Software and Telepresence TE Software The SIP implementation in Cisco TelePresence TC Software 4.x and TE Software 4.x allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCto70562. | 7.8 |
| 2014-05-02 | CVE-2014-2165 | Improper Input Validation vulnerability in Cisco Telepresence TC Software and Telepresence TE Software The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCtq72699. | 7.8 |