ID CISCO-SA-20070328-VOIP
Type cisco
Reporter Cisco
Modified 2007-03-28T16:00:00
Description
{"id": "CISCO-SA-20070328-VOIP", "vendorId": null, "type": "cisco", "bulletinFamily": "software", "title": "Multiple Cisco Unified CallManager and Presence Server Denial of Service Vulnerabilities", "description": "", "published": "2007-03-28T16:00:00", "modified": "2007-03-28T16:00:00", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070328-voip", "reporter": "Cisco", "references": ["http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070328-voip"], "cvelist": ["CVE-2007-1826", "CVE-2007-1833"], "immutableFields": [], "lastseen": "2022-03-12T03:57:33", "viewCount": 3, "enchantments": {"score": {"value": 5.2, "vector": "NONE"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-1826", "CVE-2007-1833"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16503", "SECURITYVULNS:VULN:7485"]}], "rev": 4}, "backreferences": {"references": [{"type": "cve", "idList": ["CVE-2007-1826", "CVE-2007-1833"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7485"]}]}, "exploitation": null, "vulnersScore": 5.2}, "_state": {"dependencies": 1647226544}, "_internal": {}, "affectedSoftware": [{"version": "any", "operator": "eq", "name": "cisco unified presence server"}, {"version": "any", "operator": "eq", "name": "cisco unified communications manager"}, {"version": "any", "operator": "eq", "name": "cisco unified presence server"}, {"version": "any", "operator": "eq", "name": "cisco unified communications manager"}], "vendorCvss": {"score": "3.3", "severity": "low"}}
{"securityvulns": [{"lastseen": "2021-06-08T19:15:16", "bulletinFamily": "software", "cvelist": ["CVE-2007-1833", "CVE-2007-1834", "CVE-2007-1826"], "description": "Denial of service with Skinny / SCCP protocol (TCP/2000, TCP/2443), ICMP echo requiests flood, IPSec (UDP/8500) parsing.", "edition": 2, "modified": "2007-03-28T00:00:00", "published": "2007-03-28T00:00:00", "id": "SECURITYVULNS:VULN:7485", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:7485", "title": "Cisco Unified CallManager / Unified Presence Server multiple security vulnerabilities", "type": "securityvulns", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "cve": [{"lastseen": "2022-03-23T12:02:27", "description": "Unspecified vulnerability in the IPSec Manager Service for Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allows remote attackers to cause a denial of service (loss of cluster services) via a \"specific UDP packet\" to UDP port 8500, aka bug ID CSCsg60949.", "cvss3": {}, "published": "2007-04-02T23:19:00", "type": "cve", "title": "CVE-2007-1826", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 7.8, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2007-1826"], "modified": "2017-07-29T01:31:00", "cpe": ["cpe:/a:cisco:unified_callmanager:5.0", "cpe:/a:cisco:unified_presence_server:1.0", "cpe:/a:cisco:unified_callmanager:5.0\\(3\\)", "cpe:/a:cisco:unified_presence_server:1.0\\(2\\)", "cpe:/a:cisco:unified_presence_server:1.0\\(1\\)", "cpe:/a:cisco:unified_callmanager:5.0\\(2\\)", "cpe:/a:cisco:unified_callmanager:5.0\\(4\\)", "cpe:/a:cisco:unified_callmanager:5.0\\(1\\)", "cpe:/a:cisco:unified_callmanager:5.0\\(3a\\)"], "id": "CVE-2007-1826", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-1826", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}, "cpe23": ["cpe:2.3:a:cisco:unified_callmanager:5.0\\(4\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_presence_server:1.0\\(2\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_presence_server:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_presence_server:1.0\\(1\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3a\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(1\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(2\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3\\):*:*:*:*:*:*:*"]}, {"lastseen": "2022-03-23T12:02:35", "description": "The Skinny Call Control Protocol (SCCP) implementation in Cisco Unified CallManager (CUCM) 3.3 before 3.3(5)SR2a, 4.1 before 4.1(3)SR4, 4.2 before 4.2(3)SR1, and 5.0 before 5.0(4a)SU1 allows remote attackers to cause a denial of service (loss of voice services) by sending crafted packets to the (1) SCCP (2000/tcp) or (2) SCCPS (2443/tcp) port.", "cvss3": {}, "published": "2007-04-03T00:19:00", "type": "cve", "title": "CVE-2007-1833", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "PARTIAL", "integrityImpact": "NONE", "baseScore": 5.0, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2007-1833"], "modified": "2017-07-29T01:31:00", "cpe": ["cpe:/a:cisco:unified_callmanager:3.3\\(3\\)sr1", "cpe:/a:cisco:unified_callmanager:4.1\\(3\\)", "cpe:/a:cisco:unified_callmanager:4.1", "cpe:/a:cisco:unified_callmanager:5.0\\(2\\)", "cpe:/a:cisco:unified_callmanager:5.0\\(4\\)", "cpe:/a:cisco:unified_callmanager:4.1\\(3\\)sr2", "cpe:/a:cisco:unified_callmanager:4.2", "cpe:/a:cisco:unified_callmanager:3.3\\(5\\)", "cpe:/a:cisco:unified_callmanager:3.3\\(2\\)spb", "cpe:/a:cisco:unified_callmanager:3.3\\(3\\)", "cpe:/a:cisco:unified_callmanager:3.3\\(2\\)", "cpe:/a:cisco:unified_callmanager:4.1\\(3\\)sr1", "cpe:/a:cisco:unified_callmanager:3.3\\(2\\)spc", "cpe:/a:cisco:unified_callmanager:5.0\\(3\\)", "cpe:/a:cisco:unified_callmanager:4.1\\(3\\)sr3", "cpe:/a:cisco:unified_callmanager:4.1\\(2\\)", "cpe:/a:cisco:unified_callmanager:3.3\\(5\\)sr1a", "cpe:/a:cisco:unified_callmanager:3.3\\(4\\)", "cpe:/a:cisco:unified_callmanager:3.3", "cpe:/a:cisco:unified_callmanager:5.0\\(3a\\)", "cpe:/a:cisco:unified_callmanager:3.3\\(4\\)sr1a", "cpe:/a:cisco:unified_callmanager:5.0", "cpe:/a:cisco:unified_callmanager:3.3\\(5\\)sr1", "cpe:/a:cisco:unified_callmanager:3.3\\(3\\)sr4", "cpe:/a:cisco:unified_callmanager:5.0\\(1\\)"], "id": "CVE-2007-1833", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-1833", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cpe23": ["cpe:2.3:a:cisco:unified_callmanager:4.1:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:4.1\\(3\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(5\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(5\\)sr1:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:4.1\\(3\\)sr1:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(1\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(2\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(2\\)spc:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(3\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(3\\)sr1:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(3\\)sr4:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:4.2:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:4.1\\(2\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(4\\)sr1a:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:4.1\\(3\\)sr2:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(4\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3a\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(5\\)sr1a:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:4.1\\(3\\)sr3:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(2\\)spb:*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(4\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_callmanager:3.3\\(2\\):*:*:*:*:*:*:*"]}]}
