CVE-2014-0661

high

Cisco

CVSS v3 Base Score

8.3

AV:A/AC:L/Au:N/C:C/I:C/A:C

EPSS Score

4.0%

Exploitation probability in 30 days

Top 11% most likely to be exploited

Attack Characteristics

Attack Vector

Adjacent

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: January 22, 2014 (4494 days ago)

Last Modified: April 29, 2026

Vendor: Cisco

Source: NVD

Description

The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote attackers to execute arbitrary commands or cause a denial of service (stack memory corruption) via a crafted XML-RPC message, aka Bug ID CSCui32796.

CWE

CWE-94

Affected Products

cisco telepresence system softwarecisco telepresence system 1000cisco telepresence system 1300-65cisco telepresence system 3000cisco telepresence system 3010cisco telepresence system 3200cisco telepresence system 3210cisco telepresence system 500-37cisco telepresence system 1100cisco telepresence system 500-32

References

🔗 osvdb.org 🔗 secunia.com 🔗 tools.cisco.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com

CVE-2014-0661

Vulnerability Report

Description

CWE

Affected Products

References