CVE-2012-5416: Buffer Overflow
First published: Fri Nov 02 2012(Updated: )
Buffer overflow in Cisco Unified MeetingPlace Web Conferencing before 7.1MR1 Patch 1, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 allows remote attackers to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua66341.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified MeetingPlace | <=7.1 | |
| Cisco Unified MeetingPlace | =7.0 | |
| Cisco Unified MeetingPlace | =7.0.1 | |
| Cisco Unified MeetingPlace | =7.0.2 | |
| Cisco Unified MeetingPlace | =7.0.2-mr1 | |
| Cisco Unified MeetingPlace | =7.0.3 | |
| Cisco Unified MeetingPlace | =7.0.3-mr2 | |
| Cisco Unified MeetingPlace | =7.1 | |
| Cisco Unified MeetingPlace | =8.0 | |
| Cisco Unified MeetingPlace | =8.0-mr1 | |
| Cisco Unified MeetingPlace | =8.5 | |
| Cisco Unified MeetingPlace | =8.5.1 | |
| Cisco Unified MeetingPlace | =8.5.2 | |
| Cisco Unified MeetingPlace | =8.5.3 | |
| Cisco Unified MeetingPlace | =8.5.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-5416?
CVE-2012-5416 is categorized as a high severity vulnerability due to the potential for remote denial of service.
How do I fix CVE-2012-5416?
To mitigate CVE-2012-5416, upgrade to Cisco Unified MeetingPlace versions 7.1MR1 Patch 1, 8.0MR1 Patch 1, or 8.5MR3 or later.
What are the affected software versions for CVE-2012-5416?
CVE-2012-5416 affects Cisco Unified MeetingPlace versions up to and including 8.5.4.
Is there a workaround for CVE-2012-5416?
There are no known workarounds for CVE-2012-5416; upgrading to the appropriate patched version is recommended.
Can CVE-2012-5416 be exploited remotely?
Yes, CVE-2012-5416 can be exploited remotely by attackers to cause a denial of service condition.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- vendor/cisco
- canonical/cisco unified meetingplace
- version/cisco unified meetingplace/7.1
- version/cisco unified meetingplace/7.0
- version/cisco unified meetingplace/7.0.1
- version/cisco unified meetingplace/7.0.2
- version/cisco unified meetingplace/7.0.2-mr1
- version/cisco unified meetingplace/7.0.3
- version/cisco unified meetingplace/7.0.3-mr2
- version/cisco unified meetingplace/8.0
- version/cisco unified meetingplace/8.0-mr1
- version/cisco unified meetingplace/8.5
- version/cisco unified meetingplace/8.5.1
- version/cisco unified meetingplace/8.5.2
- version/cisco unified meetingplace/8.5.3
- version/cisco unified meetingplace/8.5.4