Lucene search

[email protected]CVE-2010-2837

HistoryAug 26, 2010 - 9:00 p.m.

CVE-2010-2837

2010-08-2621:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cisco

unified communications manager

cucm

callmanager

sip

denial of service

cve-2010-2837

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

55.0%

JSON

The SIPStationInit implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.1SU before 6.1(5)SU1, 7.0SU before 7.0(2a)SU3, 7.1SU before 7.1(3b)SU2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SIP message, aka Bug ID CSCtd17310.

CPENameOperatorVersion
cisco:unified_communications_managercisco unified communications managereq6.1\(3a\)
cisco:unified_communications_managercisco unified communications managereq6.1\(2\)
cisco:unified_communications_managercisco unified communications managereq6.1\(3b\)su1
cisco:unified_communications_managercisco unified communications managereq6.1\(2\)su1a
cisco:unified_communications_managercisco unified communications managereq6.1\(4\)su1
cisco:unified_communications_managercisco unified communications managereq6.1\(4\)
cisco:unified_communications_managercisco unified communications managereq6.1\(4a\)
cisco:unified_communications_managercisco unified communications managereq6.1\(3\)
cisco:unified_communications_managercisco unified communications managereq6.1\(4a\)su2
cisco:unified_communications_managercisco unified communications managereq6.1\(1\)

CPE	Name	Operator	Version
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(3a\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(2\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(3b\)su1
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(2\)su1a
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(4\)su1
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(4\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(4a\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(3\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(4a\)su2
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(1\)

Rows per page:

1-10 of 401

References

www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml

www.vupen.com/english/advisories/2010/2187

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

55.0%

JSON

Related for CVE-2010-2837

prion1 securityvulns2 cisco1