What is CVE-2011-2543?

CVE-2011-2543 is a vulnerability in Cisco Telepresence_codec_c40, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-09-23.

Is CVE-2011-2543 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Cisco Telepresence_codec_c40

CVE-2011-2543

Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC4.2.0 allows remote authenticated users to cause a denial of service (endpoint reboot or process crash) or possibly execute arbitrary code…

Vulnerability class: Buffer Overflow

EPSS: 0.431 (97.6th percentile) — read the EPSS interpretation.

Affected products

Cisco Telepresence_codec_c40
Cisco Telepresence_codec_c60
Cisco Telepresence_codec_c90
Cisco Telepresence_c_series_software — versions tc4.0.0, tc4.0.1, tc4.0.4
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

49670 (vdb-entry, x_refsource_BID)
8393 (x_refsource_SREASON, third-party-advisory)
46057 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
46109 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
1026072 (Exploit, vdb-entry, x_refsource_SECTRACK)
20110919 Cisco TelePresence Multiple Vulnerabilities - SOS-11-010 (mailing-list, x_refsource_BUGTRAQ)
17871 (Exploit, exploit, x_refsource_EXPLOIT-DB)
cisco-telepresence-getxml-bo(69907) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2011-2543?: CVE-2011-2543 is a vulnerability in Cisco Telepresence_codec_c40, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-09-23.
Is CVE-2011-2543 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.