CVE-2018-0280

Description

A vulnerability in the Real-Time Transport Protocol (RTP) bitstream processing of the Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to insufficient input validation of incoming RTP bitstreams. An attacker could exploit this vulnerability by sending a crafted RTP bitstream to an affected Cisco Meeting Server. A successful exploit could allow the attacker to deny audio and video services by causing media process crashes resulting in a DoS condition on the affected product. This vulnerability affects Cisco Meeting Server deployments that are running Cisco Meeting Server Software Releases 2.0, 2.1, 2.2, and 2.3. Cisco Bug IDs: CSCve79693, CSCvf91393, CSCvg64656, CSCvh30725, CSCvi86363.

References

Link	Tags
http://www.securityfocus.com/bid/104209	vdb entry third party advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180516-msms	vendor advisory
http://www.securitytracker.com/id/1040923	vdb entry third party advisory

Frequently Asked Questions

What is the severity of CVE-2018-0280?: CVE-2018-0280 has been scored as a high severity vulnerability.
How to fix CVE-2018-0280?: To fix CVE-2018-0280, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2018-0280 being actively exploited in the wild?: It is possible that CVE-2018-0280 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~1% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2018-0280?: CVE-2018-0280 affects n/a Cisco Meeting Server Media Services.

Description

Category

CWE-20 – Improper Input Validation

References

Frequently Asked Questions