Cisco Telepresence Video Communication Server Software vulnerabilities

CVE-2016-1444 [MEDIUM] CWE-20 CVE-2016-1444: The Mobile and Remote Access (MRA) component in Cisco TelePresence Video Communication Server (VCS) The Mobile and Remote Access (MRA) component in Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7 and Expressway X8.1 through X8.6 mishandles certificates, which allows remote attackers to bypass authentication via an arbitrary trusted certificate, aka Bug ID CSCuz64601.

CVE-2016-1338 [MEDIUM] CWE-20 CVE-2016-1338: Cisco TelePresence Video Communication Server (VCS) X8.5.1 and X8.5.2 allows remote authenticated us Cisco TelePresence Video Communication Server (VCS) X8.5.1 and X8.5.2 allows remote authenticated users to cause a denial of service (VoIP outage) via a crafted SIP message, aka Bug ID CSCuu43026.

CVE-2016-1316 [MEDIUM] CWE-200 CVE-2016-1316: Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7, as used in conjunction with J Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7, as used in conjunction with Jabber Guest, allows remote attackers to obtain sensitive call-statistics information via a direct request to an unspecified URL, aka Bug ID CSCux73362.

CVE-2015-6410 [MEDIUM] CWE-20 CVE-2015-6410: The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communications Manager m The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communications Manager mishandles edge-device identity validation, which allows remote attackers to bypass intended call-reception and call-setup restrictions by spoofing a user, aka Bug ID CSCuu97283.

CVE-2015-6413 [MEDIUM] CWE-264 CVE-2015-6413: Cisco TelePresence Video Communication Server (VCS) Expressway X8.6 allows remote authenticated user Cisco TelePresence Video Communication Server (VCS) Expressway X8.6 allows remote authenticated users to bypass intended read-only restrictions and upload Tandberg Linux Package (TLP) files by visiting an administrative page, aka Bug ID CSCuw55651.

CVE-2015-6414 [LOW] CWE-200 CVE-2015-6414: Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same encryption key across differe Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same encryption key across different customers' installations, which makes it easier for local users to defeat cryptographic protection mechanisms by leveraging knowledge of a key from another installation, aka Bug ID CSCuw64516.

CVE-2015-6376 [MEDIUM] CWE-352 CVE-2015-6376: Cross-site request forgery (CSRF) vulnerability in Cisco TelePresence Video Communication Server (VC Cross-site request forgery (CSRF) vulnerability in Cisco TelePresence Video Communication Server (VCS) X8.5.1 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv72412.

CVE-2015-6318 [MEDIUM] CWE-20 CVE-2015-6318: Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1 and X8.5.2 allows local users Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1 and X8.5.2 allows local users to write to arbitrary files via an unspecified symlink attack, aka Bug ID CSCuv11969.

CVE-2015-4325 [MEDIUM] CWE-264 CVE-2015-4325: The process-management implementation in Cisco TelePresence Video Communication Server (VCS) Express The process-management implementation in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges by terminating a firestarter.py supervised process and then triggering the restart of a process by the root account, aka Bug ID CSCuv12272.

CVE-2015-4330 [MEDIUM] CWE-78 CVE-2015-4330: A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges for OS command execution via invalid parameters, aka Bug ID CSCuv10556.

CVE-2015-6261 [MEDIUM] CWE-200 CVE-2015-6261: Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authenticated us Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authenticated users to bypass intended access restrictions and read configuration files by leveraging the Mobile and Remote Access (MRA) role and establishing a TFTP session, aka Bug ID CSCuv78531.

CVE-2015-4327 [HIGH] CWE-20 CVE-2015-4327: The CLI in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users The CLI in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to obtain root privileges by writing script arguments to an unspecified file, aka Bug ID CSCuv12542.

CVE-2015-4318 [MEDIUM] CWE-399 CVE-2015-4318: Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote attackers to cau Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote attackers to cause a denial of service via invalid variables in a GET request, aka Bug ID CSCuv40528.

CVE-2015-4314 [MEDIUM] CWE-200 CVE-2015-4314: The System Snapshot feature in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1 The System Snapshot feature in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1 allows remote authenticated users to obtain sensitive password-hash information by reading the snapshot file, aka Bug ID CSCuv40422.

CVE-2015-4317 [MEDIUM] CWE-399 CVE-2015-4317: Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote attackers to cau Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote attackers to cause a denial of service via invalid variables in an authentication packet, aka Bug ID CSCuv40469.

CVE-2015-4320 [MEDIUM] CWE-200 CVE-2015-4320: The Configuration Log File component in Cisco TelePresence Video Communication Server (VCS) Expressw The Configuration Log File component in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authenticated users to obtain sensitive information by reading a log file, aka Bug ID CSCuv12340.

CVE-2015-4315 [MEDIUM] CWE-20 CVE-2015-4315: The Call Policy Configuration page in Cisco TelePresence Video Communication Server (VCS) Expressway The Call Policy Configuration page in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.3 improperly validates external DTDs, which allows remote authenticated users to read arbitrary files or cause a denial of service via a crafted XML document, aka Bug ID CSCuv31853.

CVE-2015-4316 [MEDIUM] CWE-20 CVE-2015-4316: The Mobile and Remote Access (MRA) endpoint-validation feature in Cisco TelePresence Video Communica The Mobile and Remote Access (MRA) endpoint-validation feature in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 improperly validates the phone line used for registration, which allows remote authenticated users to conduct impersonation attacks via a crafted registration, aka Bug ID CSCuv40396.

CVE-2015-4303 [MEDIUM] CWE-264 CVE-2015-4303: Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows remote authenticated users to exec Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows remote authenticated users to execute arbitrary commands in the context of the nobody user account via an unspecified web-page parameter, aka Bug ID CSCuv12333.

CVE-2015-4328 [MEDIUM] CWE-20 CVE-2015-4328: Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 improperly checks for a user a Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 improperly checks for a user account's read-only attribute, which allows remote authenticated users to execute arbitrary OS commands via crafted HTTP requests, as demonstrated by read or write operations on the Unified Communications lookup page, aka Bug ID CSCuv12552.