Lucene search

[email protected]CVE-2010-2838

HistoryAug 26, 2010 - 9:00 p.m.

CVE-2010-2838

2010-08-2621:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cisco

unified communications manager

cucm

denial of service

sip register

vulnerability

cve-2010-2838

nvd

bug id csctf66305

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

55.0%

JSON

The SendCombinedStatusInfo implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.0SU before 7.0(2a)SU3, 7.1 before 7.1(5), and 8.0 before 8.0(3) allows remote attackers to cause a denial of service (process failure) via a malformed SIP REGISTER message, aka Bug ID CSCtf66305.

CPENameOperatorVersion
cisco:unified_communications_managercisco unified communications managereq7.0\(2a\)
cisco:unified_communications_managercisco unified communications managereq7.0\(1\)su1
cisco:unified_communications_managercisco unified communications managereq7.0\(1\)su1a
cisco:unified_communications_managercisco unified communications managerle7.0\(2a\)su2
cisco:unified_communications_managercisco unified communications managereq7.0\(2a\)su1
cisco:unified_communications_managercisco unified communications managereq7.0\(2\)
cisco:unified_communications_managercisco unified communications managerle7.1\(5\)su1a
cisco:unified_communications_managercisco unified communications managereq7.1\(2b\)su1
cisco:unified_communications_managercisco unified communications managereq7.1\(2b\)
cisco:unified_communications_managercisco unified communications managereq7.1\(3b\)

CPE	Name	Operator	Version
cisco:unified_communications_manager	cisco unified communications manager	eq	7.0\(2a\)
cisco:unified_communications_manager	cisco unified communications manager	eq	7.0\(1\)su1
cisco:unified_communications_manager	cisco unified communications manager	eq	7.0\(1\)su1a
cisco:unified_communications_manager	cisco unified communications manager	le	7.0\(2a\)su2
cisco:unified_communications_manager	cisco unified communications manager	eq	7.0\(2a\)su1
cisco:unified_communications_manager	cisco unified communications manager	eq	7.0\(2\)
cisco:unified_communications_manager	cisco unified communications manager	le	7.1\(5\)su1a
cisco:unified_communications_manager	cisco unified communications manager	eq	7.1\(2b\)su1
cisco:unified_communications_manager	cisco unified communications manager	eq	7.1\(2b\)
cisco:unified_communications_manager	cisco unified communications manager	eq	7.1\(3b\)

Rows per page:

1-10 of 251

References

www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml

www.vupen.com/english/advisories/2010/2187

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

55.0%

JSON

Related for CVE-2010-2838

prion1 securityvulns2 cisco1