CVE-2011-0379

CWE-119 — Buffer Overflow CWE-200 — Information Exposure CWE-264 CWE-3994 documents4 sources

Severity

7.9HIGH

EPSS

6.4%

top 8.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance Software Cisco Telepresence Manager Cisco Telepresence Multipoint Switch Software +1 more

Timeline

PublishedFeb 25

Latest updateMay 17

Description

Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x; and Cisco TelePresence Manager 1.2.x, 1.3.x, 1.4.x, 1.5.x, and 1.6.2 allows remote attackers to execute arbitrary code via a crafted Cisco Discovery Protocol packet, aka Bug IDs CSCtd75769, CSCtd75766, CSCtd75754, and CSCtd75761.

CVSS vector

AV:A/AC:M/C:C/I:C/A:CExploitability: 5.5 | Impact: 10.0

Affected Packages4 packages

▶NVDcisco/telepresence_multipoint_switch_software16 versions+15

▶NVDcisco/telepresence_system_software17 versions+16

▶NVDcisco/adaptive_security_appliance_software1.6.0

▶NVDcisco/telepresence_manager6 versions+5

🔴Vulnerability Details

GHSA

GHSA-89cx-qwg6-wv7h: Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1↗2022-05-17

▶

CVEList

CVE-2011-0379: Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1↗2011-02-25

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices↗2011-02-23

▶