Important DoS Vulnerability for Cisco Expressway and VCS X7.x and X8.x – CVE-2017-6790

Posted by Eric Losier on Dec 13, 2017 9:34:21 AM

Special thank you to Ben Petroff and the Stack8 Managed Services team for their expertise with Cisco Expressway  

Earlier this spring, Cisco had announced a denial of service (DoS) vulnerability affecting CUCM 10.x and 11.x, which we discussed in a previous blog post entitled: Important DoS Vulnerability for CUCM 10.x and 11.x "cisco-sa-20170419-ucm"

Cisco has recently announced that Cisco Expressway and TelePresence Video Communication Server (VCS) are also affected by a similar DoS vulnerability. Advisory ID “cisco-sa-20170816-vcs” (CVE-2017-6790) explains that an unauthenticated, remote attacker could send excessive SIP traffic to the device and cause a complete DoS condition on the targeted system.

Read More

Topics: cisco expressway, CVE-2017-6790

Stack8 Announces the Appointment of Marc Blanchette as Vice President of Sales

Posted by Stack8 Marketing on Dec 5, 2017 9:19:51 AM

New Vice President of Sales will expand Stack8’s market footprint and meet the needs of its growing customer base

Montreal, CANADA, December 05, 2017 - Stack8, a leading Cisco Unified Communications (UC) and Networking services and solutions provider today announced the appointment of Marc Blanchette as Vice President of Sales, effective immediately. In his expanded role, Marc will be integral in leading and expanding the company’s sales team to support its continued growth. Marc is responsible for getting the word out to Cisco Collaboration and Networking customers across North America that there’s a “Better Way” to capture all of the value from the amazing technology that they have invested in.

Read More

Topics: #stack8, #marcblanchette

Jabber and Public CA-signed Certificates (Part 3 of 3)

Posted by Dishko Hristov on Nov 16, 2017 12:19:30 PM

In this third article, we will expand upon what we learned in part 1 and part 2 regarding Jabber and how to renew your CA-signed certificates. In this final article, we will examen the certification process within Cisco Expressway.

It is important to note that for Jabber Mobile and Remote Access (MRA) feature as well as for Business to Business calls (B2B), it is mandatory to have a CA-signed certificate on the Expressway-Edge node. On the other hand, there is no such requirement for Expressway-Core. However, Stack8 recommends a CA-signed certificate to be used on both Expressway servers.

Another requirement is to cross upload all Root and Intermediate certificates on both nodes in order for the Secure Traversal Zone to be active and communication between two Expressway nodes to work.

Do not forget to verify, every time you renew your certificates, if there is a change on the Root or any of the Intermediate certificates and Upload all new chain certs in the Trusted Certificates section of the server.

 

Read More

Topics: Jabber, cisco jabber, cisco expressway

Jabber and Public CA-signed Certificates (Part 2 of 3)

Posted by Dishko Hristov on Nov 15, 2017 11:34:02 AM
In part 1 we got a general overview of the certification process for Cisco Jabber. In this second of 3 parts, we will discuss how to renew your CA-signed certificates for Cisco Unified Communication Manager (CUCM), Cisco Unified Communication IM and Presence and Cisco Unity Connection.
Read More

Topics: Jabber, CUCM, cisco jabber, Cisco CUCM

Jabber and Public CA-signed Certificates (Part 1 of 3)

Posted by Dishko Hristov on Nov 14, 2017 11:19:31 AM

Cisco Jabber gives you and your team the freedom to be productive from anywhere, on any device. Jabber enables you to access presence, instant messaging (IM), voice, video, voice messaging, desktop sharing, and conferencing Instantly.

Read More

Topics: Jabber, cisco jabber, Cisco CUCM

Don’t miss out. Expert advice straight to your inbox!

Insightful tips, troubleshooting and solutions for your everyday Unified Communications challenges from our team of experts. You can look forward to:

  • Weekly UC tips;
  • Cisco Unified Communications insights;
  • UCCX - Contact Center insights;
  • Network and Security insights;
  • Cisco Release notes and Product reviews.
Join us for free live demo

Recent Posts