Remote Denial of Service Vulnerability in tandberg mxp series SNMP Packets
Release date: 2010-09-02
Updated on: 2010-09-03
Affected Systems:
Cisco tandberg mxp Series 8.x
Unaffected system:
Cisco tandberg mxp Series 9.0
Description:
--------------------------------------------------------------------------------
Tandberg mxp is a series of online video conferencing systems.
The tandberg mxp device responds to all received SNMP Packets. If a user spoofs the source IP address, the response may be sent back to the device, consuming all available memory resources.
<* Source: David Klein
Link: http://secunia.com/advisories/41203/
Http://marc.info /? L = full-disclosure & m = 128298769427564 & w = 2
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Cisco
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Ftp://ftp.tandberg.com/pub/software/endpoints/mxp/f90/