Lucene search

[email protected]CVE-2005-2243

HistoryJul 12, 2005 - 4:00 a.m.

CVE-2005-2243

2005-07-1204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-2243

memory leak

inetinfo.exe

cisco callmanager

ccm 3.2

denial of service

mla

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

60.4%

JSON

Memory leak in inetinfo.exe in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1, when Multi Level Admin (MLA) is enabled, allows remote attackers to cause a denial of service (memory consumption) via a large number of Admin Service Tool (AST) logins that fail.

CPENameOperatorVersion
cisco:call_managercisco call managereq4.1
cisco:call_managercisco call managereq3.2
cisco:call_managercisco call managereq3.3
cisco:call_managercisco call managereq4.0

CPE	Name	Operator	Version
cisco:call_manager	cisco call manager	eq	4.1
cisco:call_manager	cisco call manager	eq	3.2
cisco:call_manager	cisco call manager	eq	3.3
cisco:call_manager	cisco call manager	eq	4.0

References

www.cisco.com/warp/public/707/cisco-sa-20050712-ccm.shtml

www.securityfocus.com/bid/14253

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

60.4%

JSON

Related for CVE-2005-2243

cisco1