CVE-2014-0660
Description
Cisco TelePresence ISDN Gateway before 2.2(1.92) is vulnerable to a denial of service via a crafted Q.931 STATUS message causing D-channel drop.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco TelePresence ISDN Gateway before 2.2(1.92) is vulnerable to a denial of service via a crafted Q.931 STATUS message causing D-channel drop.
Vulnerability
The vulnerability exists in the ISDN Q.931 signaling protocol handling of the Cisco TelePresence ISDN Gateway. It allows an unauthenticated, remote attacker to trigger a drop of the D-channel by injecting a crafted Q.931 STATUS message into the signaling flow. Affected versions include all software releases prior to 2.2(1.92) running on Cisco TelePresence ISDN GW 3241 or Cisco TelePresence ISDN GW MSE 8321 [1].
Exploitation
An attacker can exploit the vulnerability by injecting specially crafted packets in the Q.931 flow. No authentication or prior access is required; the attacker only needs network access to the signaling path between the gateway and the ISDN network. Successful injection of the crafted STATUS message causes the D-channel to drop [1].
Impact
A successful exploit results in a denial-of-service condition where all active calls handled by the affected system are terminated. New calls cannot be established until the D-channel communication is restored, which requires a software reload of the gateway [1].
Mitigation
Cisco has released software update version 2.2(1.92) to address this vulnerability. No workarounds exist. All affected users should upgrade to the fixed release as soon as possible [1].
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
5cpe:2.3:a:cisco:telepresence_isdn_gateway_software:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:cisco:telepresence_isdn_gateway_software:*:*:*:*:*:*:*:*range: <=2.1\(1.79\)
- cpe:2.3:a:cisco:telepresence_isdn_gateway_software:2.1\(1.43\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:telepresence_isdn_gateway_software:2.1\(1.49\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:telepresence_isdn_gateway_software:2.1\(1.56\):*:*:*:*:*:*:*
- Range: <2.2(1.92)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140122-isdngwnvdVendor Advisory
- tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
- www.securityfocus.com/bid/65072nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1029657nvdThird Party AdvisoryVDB Entry
- osvdb.org/102361nvd
- secunia.com/advisories/56591nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/90622nvd
News mentions
0No linked articles in our index yet.