Cisco Bug: CSCte75792 - CTRS Control Client fails to validate SSL Certificates
Nov 12, 2015
- Cisco TelePresence System 3000 Series
Known Affected Releases
Symptoms: Cisco TelePresence Endpoint systems do not confirm the SSL identity of a Cisco TelePresence Recording Server (CTRS) or Cisco TelePresence Multi-Point Switch (CTMS) when configured in Secure Communications mode. This could allow an attacker with the ability to insert themselves between the CTS and the CTRS or CTMS to impersinate the device that is supplying the affected service. Conditions: Systems running an affected version of Cisco TelePresence Endpoint software.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases