cnvd - cnvd-2017-06045

cnvd-2017-06045

Vulnerability from cnvd

Title: Cisco TelePresence ICMP拒绝服务漏洞

Description:

Cisco TelePresence是思科网真解决方案，它为人们和各个场所以及工作生活各个方面的交互创造了一种独特的面对面体验，通过结合创新的视频、音频和交互式组件（软件和硬件）在网络上实现了这种体验。

Cisco TelePresence ICMP存在拒绝服务漏洞，由于对接收到的ICMP数据包的大小的输入未进行有效验证，远程攻击者未经身份验证可通过将精心设计的ICMP数据包发送到目标端点的本地IP地址，使TelePresence端点意外重载，导致拒绝服务。此漏洞将影响IPv4或IPv6 ICMP流量。

Severity: 高

Patch Name: Cisco TelePresence ICMP拒绝服务漏洞的补丁

Patch Description:

Cisco TelePresence ICMP存在拒绝服务漏洞，由于对接收到的ICMP数据包的大小的输入未进行有效验证，远程攻击者未经身份验证可通过将精心设计的ICMP数据包发送到目标端点的本地IP地址，使TelePresence端点意外重载，导致拒绝服务。此漏洞将影响IPv4或IPv6 ICMP流量。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可参考如下供应商提供的安全公告获得补丁信息： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ctp

Reference: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3825

Impacted products

Name
Cisco TelePresence Collaboration Endpoint (CE) Software

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-3825"
    }
  },
  "description": "Cisco TelePresence\u662f\u601d\u79d1\u7f51\u771f\u89e3\u51b3\u65b9\u6848\uff0c\u5b83\u4e3a\u4eba\u4eec\u548c\u5404\u4e2a\u573a\u6240\u4ee5\u53ca\u5de5\u4f5c\u751f\u6d3b\u5404\u4e2a\u65b9\u9762\u7684\u4ea4\u4e92\u521b\u9020\u4e86\u4e00\u79cd\u72ec\u7279\u7684\u9762\u5bf9\u9762\u4f53\u9a8c\uff0c\u901a\u8fc7\u7ed3\u5408\u521b\u65b0\u7684\u89c6\u9891\u3001\u97f3\u9891\u548c\u4ea4\u4e92\u5f0f\u7ec4\u4ef6\uff08\u8f6f\u4ef6\u548c\u786c\u4ef6\uff09\u5728\u7f51\u7edc\u4e0a\u5b9e\u73b0\u4e86\u8fd9\u79cd\u4f53\u9a8c\u3002\r\n\r\nCisco TelePresence ICMP\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u7531\u4e8e\u5bf9\u63a5\u6536\u5230\u7684ICMP\u6570\u636e\u5305\u7684\u5927\u5c0f\u7684\u8f93\u5165\u672a\u8fdb\u884c\u6709\u6548\u9a8c\u8bc1\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u53ef\u901a\u8fc7\u5c06\u7cbe\u5fc3\u8bbe\u8ba1\u7684ICMP\u6570\u636e\u5305\u53d1\u9001\u5230\u76ee\u6807\u7aef\u70b9\u7684\u672c\u5730IP\u5730\u5740\uff0c\u4f7fTelePresence\u7aef\u70b9\u610f\u5916\u91cd\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002 \u6b64\u6f0f\u6d1e\u5c06\u5f71\u54cdIPv4\u6216IPv6 ICMP\u6d41\u91cf\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ctp",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-06045",
  "openTime": "2017-05-07",
  "patchDescription": "Cisco TelePresence\u662f\u601d\u79d1\u7f51\u771f\u89e3\u51b3\u65b9\u6848\uff0c\u5b83\u4e3a\u4eba\u4eec\u548c\u5404\u4e2a\u573a\u6240\u4ee5\u53ca\u5de5\u4f5c\u751f\u6d3b\u5404\u4e2a\u65b9\u9762\u7684\u4ea4\u4e92\u521b\u9020\u4e86\u4e00\u79cd\u72ec\u7279\u7684\u9762\u5bf9\u9762\u4f53\u9a8c\uff0c\u901a\u8fc7\u7ed3\u5408\u521b\u65b0\u7684\u89c6\u9891\u3001\u97f3\u9891\u548c\u4ea4\u4e92\u5f0f\u7ec4\u4ef6\uff08\u8f6f\u4ef6\u548c\u786c\u4ef6\uff09\u5728\u7f51\u7edc\u4e0a\u5b9e\u73b0\u4e86\u8fd9\u79cd\u4f53\u9a8c\u3002\r\n\r\nCisco TelePresence ICMP\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u7531\u4e8e\u5bf9\u63a5\u6536\u5230\u7684ICMP\u6570\u636e\u5305\u7684\u5927\u5c0f\u7684\u8f93\u5165\u672a\u8fdb\u884c\u6709\u6548\u9a8c\u8bc1\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u53ef\u901a\u8fc7\u5c06\u7cbe\u5fc3\u8bbe\u8ba1\u7684ICMP\u6570\u636e\u5305\u53d1\u9001\u5230\u76ee\u6807\u7aef\u70b9\u7684\u672c\u5730IP\u5730\u5740\uff0c\u4f7fTelePresence\u7aef\u70b9\u610f\u5916\u91cd\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u6b64\u6f0f\u6d1e\u5c06\u5f71\u54cdIPv4\u6216IPv6 ICMP\u6d41\u91cf\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco TelePresence ICMP\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco TelePresence Collaboration Endpoint (CE) Software"
  },
  "referenceLink": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3825",
  "serverity": "\u9ad8",
  "submitTime": "2017-05-05",
  "title": "Cisco TelePresence ICMP\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

CVE-2017-3825 (GCVE-0-2017-3825)

Vulnerability from cvelistv5

Published

2017-05-16 17:00

Modified

2024-08-05 14:39

Severity ?

CWE

CWE-20

Summary

A vulnerability in the ICMP ingress packet processing of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause the TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to incomplete input validation for the size of a received ICMP packet. An attacker could exploit this vulnerability by sending a crafted ICMP packet to the local IP address of the targeted endpoint. A successful exploit could allow the attacker to cause a DoS of the TelePresence endpoint, during which time calls could be dropped. This vulnerability would affect either IPv4 or IPv6 ICMP traffic. This vulnerability affects the following Cisco TelePresence products when running software release CE8.1.1, CE8.2.0, CE8.2.1, CE8.2.2, CE 8.3.0, or CE8.3.1: Spark Room OS, TelePresence DX Series, TelePresence MX Series, TelePresence SX Quick Set Series, TelePresence SX Series. Cisco Bug IDs: CSCvb95396.

References

▼	URL	Tags
	http://www.securityfocus.com/bid/98293	vdb-entry, x_refsource_BID
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ctp	x_refsource_CONFIRM
	http://www.securitytracker.com/id/1038392	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	Cisco TelePresence	Version: Cisco TelePresence

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:39:41.091Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "98293",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/98293"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ctp"
          },
          {
            "name": "1038392",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1038392"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco TelePresence",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco TelePresence"
            }
          ]
        }
      ],
      "datePublic": "2017-05-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the ICMP ingress packet processing of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause the TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to incomplete input validation for the size of a received ICMP packet. An attacker could exploit this vulnerability by sending a crafted ICMP packet to the local IP address of the targeted endpoint. A successful exploit could allow the attacker to cause a DoS of the TelePresence endpoint, during which time calls could be dropped. This vulnerability would affect either IPv4 or IPv6 ICMP traffic. This vulnerability affects the following Cisco TelePresence products when running software release CE8.1.1, CE8.2.0, CE8.2.1, CE8.2.2, CE 8.3.0, or CE8.3.1: Spark Room OS, TelePresence DX Series, TelePresence MX Series, TelePresence SX Quick Set Series, TelePresence SX Series. Cisco Bug IDs: CSCvb95396."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T09:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "98293",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/98293"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ctp"
        },
        {
          "name": "1038392",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1038392"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2017-3825",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco TelePresence",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco TelePresence"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in the ICMP ingress packet processing of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause the TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to incomplete input validation for the size of a received ICMP packet. An attacker could exploit this vulnerability by sending a crafted ICMP packet to the local IP address of the targeted endpoint. A successful exploit could allow the attacker to cause a DoS of the TelePresence endpoint, during which time calls could be dropped. This vulnerability would affect either IPv4 or IPv6 ICMP traffic. This vulnerability affects the following Cisco TelePresence products when running software release CE8.1.1, CE8.2.0, CE8.2.1, CE8.2.2, CE 8.3.0, or CE8.3.1: Spark Room OS, TelePresence DX Series, TelePresence MX Series, TelePresence SX Quick Set Series, TelePresence SX Series. Cisco Bug IDs: CSCvb95396."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "98293",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/98293"
            },
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ctp",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ctp"
            },
            {
              "name": "1038392",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1038392"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2017-3825",
    "datePublished": "2017-05-16T17:00:00",
    "dateReserved": "2016-12-21T00:00:00",
    "dateUpdated": "2024-08-05T14:39:41.091Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted