CVE-2013-1176
Cisco TelePresence MCU 4500 and 4501 Series Software < 4.3(2.30) - Denial of Service via Crafted H.264 RTP Packets
Title source: llmDescription
The DSP card on Cisco TelePresence MCU 4500 and 4501 devices before 4.3(2.30), TelePresence MCU MSE 8510 devices before 4.3(2.30), and TelePresence Server before 2.3(1.55) does not properly validate H.264 data, which allows remote attackers to cause a denial of service (device reload) via crafted RTP packets in a (1) SIP session or (2) H.323 session, aka Bug IDs CSCuc11328 and CSCub05448.
References (1)
Core 1
Core References
Various Sources vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130417-tpi
Scores
EPSS
0.0117
EPSS Percentile
63.7%
Details
CWE
CWE-20
Status
published
Products (33)
cisco/telepresence_mcu_4500_series_software
4.1\(1.51\)
cisco/telepresence_mcu_4500_series_software
4.1\(1.59\)
cisco/telepresence_mcu_4500_series_software
4.2\(1.43\)
cisco/telepresence_mcu_4500_series_software
4.2\(1.46\)
cisco/telepresence_mcu_4500_series_software
4.2\(1.50\)
cisco/telepresence_mcu_4500_series_software
4.3\(1.68\)
cisco/telepresence_mcu_4500_series_software
< 4.3\(2.18\)
cisco/telepresence_mcu_4501
cisco/telepresence_mcu_4501_series_software
4.1\(1.51\)
cisco/telepresence_mcu_4501_series_software
4.1\(1.59\)
... and 23 more
Published
Apr 18, 2013
Tracked Since
Feb 18, 2026