{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Cisco Wireless LAN Controller versions ant\u00e9rieures \u00e0 8.0.140.0","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco WebEx Meetings Player versions ant\u00e9rieures \u00e0 T29.10","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SPA500 Series IP Phones utilisant une version de Cisco Small Business IP Phones inf\u00e9rieure \u00e0 7.5.7(6)","product":{"name":"Small Business","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Virtual Media Packager (VMP) utilisant Media Origination System versions ant\u00e9rieures \u00e0 2.6","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SPA51x IP Phones utilisant une version de Cisco Small Business IP Phones inf\u00e9rieure \u00e0 7.5.7(6)","product":{"name":"Small Business","vendor":{"name":"Cisco","scada":false}}},{"description":"SPA300 Series IP Phones utilisant une version de Cisco Small Business IP Phones inf\u00e9rieure \u00e0 7.5.7(6)","product":{"name":"Small Business","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) versions ant\u00e9rieures \u00e0 10.6(3)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Small Business 220 Series Smart Plus (Sx220) Switches versions 1.0.0.17, 1.0.0.18, ou 1.0.0.19 et qui ont la fonctionnalit\u00e9 SNMP activ\u00e9e","product":{"name":"Small Business","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-wlc-2 du 31    ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-wlc-2"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco    cisco-sa-20160831-meetings-player du 31 ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-meetings-player"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps du 31 ao\u00fbt    2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-sps"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-hcmf du 31    ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-hcmf"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps2 du 31    ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-sps2"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps1 du 31    ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-sps1"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-webex du 31    ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-webex"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-vmp du 31 ao\u00fbt    2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-vmp"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-wlc-1 du 31    ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-wlc-1"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-spa du 31 ao\u00fbt    2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-spa"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-hcm du 31 ao\u00fbt    2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-hcm"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps3 du 31    ao\u00fbt 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-sps3"}],"reference":"CERTFR-2016-AVI-291","revisions":[{"description":"version initiale.","revision_date":"2016-09-02T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Injection de code indirecte \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits Cisco</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et un contournement de la\npolitique de s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-spa du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-meetings-player du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-hcmf du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-hcm du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-webex du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-wlc-2 du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps2 du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps1 du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps3 du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-sps du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-wlc-1 du 31 ao\u00fbt 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160831-vmp du 31 ao\u00fbt 2016","url":null}]}