CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
88.8%
Memory leak in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5)su3, 7.x before 7.1(5b)su3, 8.0 before 8.0(3a)su2, and 8.5 before 8.5(1) allows remote attackers to cause a denial of service (memory consumption and process failure) via a malformed SIP message, aka Bug ID CSCti42904.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_communications_manager | 6.0 | cpe:2.3:a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(1) | cpe:2.3:a:cisco:unified_communications_manager:6.1\(1\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(1a) | cpe:2.3:a:cisco:unified_communications_manager:6.1\(1a\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(1b) | cpe:2.3:a:cisco:unified_communications_manager:6.1\(1b\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(2) | cpe:2.3:a:cisco:unified_communications_manager:6.1\(2\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(2)su1 | cpe:2.3:a:cisco:unified_communications_manager:6.1\(2\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(2)su1a | cpe:2.3:a:cisco:unified_communications_manager:6.1\(2\)su1a:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(3) | cpe:2.3:a:cisco:unified_communications_manager:6.1\(3\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(3a) | cpe:2.3:a:cisco:unified_communications_manager:6.1\(3a\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 6.1(3b) | cpe:2.3:a:cisco:unified_communications_manager:6.1\(3b\):*:*:*:*:*:*:* |
archives.neohapsis.com/archives/fulldisclosure/2011-05/0051.html
secunia.com/advisories/44331
www.cisco.com/en/US/products/products_security_advisory09186a0080b79904.shtml
www.securityfocus.com/bid/47609
www.securitytracker.com/id?1025449
www.vupen.com/english/advisories/2011/1122
exchange.xforce.ibmcloud.com/vulnerabilities/67122