Vulnerability CVE-2011-0388 - CERT Civis.Net

Vulnerability Name:

CVE-2011-0388 (CCN-65608)

Assigned:

2011-02-23

Published:

2011-02-23

Updated:

2011-04-09

Summary:

Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x do not properly restrict remote access to the Java servlet RMI interface, which allows remote attackers to cause a denial of service (memory consumption and web outage) via multiple crafted requests, aka Bug IDs CSCtg35830 and CSCtg35825.

CVSS v3 Severity:

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2011-0388

Source: CCN
Type: SA43451
Cisco TelePresence Products Multiple Vulnerabilities

Source: CCN
Type: cisco-sa-20110223-telepresence-ctrs
Multiple Vulnerabilities in Cisco TelePresence Recording Server

Source: CISCO
Type: Vendor Advisory
20110223 Multiple Vulnerabilities in Cisco TelePresence Recording Server

Source: CCN
Type: cisco-sa-20110223-telepresence-ctms
Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch

Source: CISCO
Type: Vendor Advisory
20110223 Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch

Source: CCN
Type: OSVDB ID: 72603
Cisco TelePresence Java Servlet RMI Interface Multiple Crafted Requests Remote DoS

Source: BID
Type: UNKNOWN
46523

Source: CCN
Type: BID-46523
Cisco TelePresence Multipoint Switch and Recording Server Denial of Service Vulnerability

Source: SECTRACK
Type: UNKNOWN
1025113

Source: SECTRACK
Type: UNKNOWN
1025114

Source: XF
Type: UNKNOWN
telepresence-rmi-dos(65608)

Vulnerable Configuration:

Configuration 1:

cpe:/a:cisco:telepresence_recording_server_software:1.6.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_recording_server_software:1.6.2:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_recording_server_software:1.6.3:*:*:*:*:*:*:*

AND

cpe:/h:cisco:telepresence_recording_server:*:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:cisco:telepresence_multipoint_switch_software:1.0.4.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.1.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.1.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.1.2:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.5.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.5.2:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.5.3:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.5.4:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.5.5:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.5.6:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.6.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.6.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.6.2:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.6.3:*:*:*:*:*:*:*

OR cpe:/a:cisco:telepresence_multipoint_switch_software:1.6.4:*:*:*:*:*:*:*

AND

cpe:/h:cisco:telepresence_multipoint_switch:*:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:cisco:telepresence_recording_server:1.6.1(2):*:*:*:*:*:*:*

Denotes that component is vulnerable