CVE-2015-0620 Information

Description

The XML parser in Cisco TelePresence Management Suite (TMS) 14.3(.2) and earlier does not properly handle external entities which allows remote authenticated users to cause a denial of service via POST requests aka Bug ID CSCus51494.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0620 http://tools.cisco.com/security/center/viewAlert.x?alertId=37491 http://www.securitytracker.com/id/1031753 https://exchange.xforce.ibmcloud.com/vulnerabilities/100924