Lucene search

[email protected]NVD:CVE-2011-2561

HistoryAug 29, 2011 - 3:55 p.m.

CVE-2011-2561

2011-08-2915:55:01

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.002

Percentile

53.2%

JSON

The SIP process in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.x before 7.1(5b)su4 and 8.x before 8.0(1) does not properly handle SDP data within a SIP call in certain situations related to use of the g729ar8 codec for a Media Termination Point (MTP), which allows remote attackers to cause a denial of service (service outage) via a crafted call, aka Bug ID CSCtc61990.

Affected configurations

Nvd

Node

ciscounified_communications_managerMatch7.0\(1\)su1

ciscounified_communications_managerMatch7.0\(1\)su1a

ciscounified_communications_managerMatch7.0\(2\)

ciscounified_communications_managerMatch7.0\(2a\)

ciscounified_communications_managerMatch7.0\(2a\)su1

ciscounified_communications_managerMatch7.0\(2a\)su2

ciscounified_communications_managerMatch7.1\(2a\)

ciscounified_communications_managerMatch7.1\(2a\)su1

ciscounified_communications_managerMatch7.1\(2b\)

ciscounified_communications_managerMatch7.1\(2b\)su1

ciscounified_communications_managerMatch7.1\(3\)

ciscounified_communications_managerMatch7.1\(3a\)

ciscounified_communications_managerMatch7.1\(3a\)su1

ciscounified_communications_managerMatch7.1\(3a\)su1a

ciscounified_communications_managerMatch7.1\(3b\)

ciscounified_communications_managerMatch7.1\(3b\)su1

ciscounified_communications_managerMatch7.1\(3b\)su2

ciscounified_communications_managerMatch7.1\(5\)

ciscounified_communications_managerMatch7.1\(5\)su1

ciscounified_communications_managerMatch7.1\(5\)su1a

ciscounified_communications_managerMatch7.1\(5a\)

ciscounified_communications_managerMatch7.1\(5b\)

ciscounified_communications_managerMatch7.1\(5b\)su1

ciscounified_communications_managerMatch7.1\(5b\)su1a

ciscounified_communications_managerMatch7.1\(5b\)su2

ciscounified_communications_managerMatch7.1\(5b\)su3

ciscounified_communications_managerMatch8.0

VendorProductVersionCPE
ciscounified_communications_manager7.0(1)su1cpe:2.3:a:cisco:unified_communications_manager:7.0\(1\)su1:*:*:*:*:*:*:*
ciscounified_communications_manager7.0(1)su1acpe:2.3:a:cisco:unified_communications_manager:7.0\(1\)su1a:*:*:*:*:*:*:*
ciscounified_communications_manager7.0(2)cpe:2.3:a:cisco:unified_communications_manager:7.0\(2\):*:*:*:*:*:*:*
ciscounified_communications_manager7.0(2a)cpe:2.3:a:cisco:unified_communications_manager:7.0\(2a\):*:*:*:*:*:*:*
ciscounified_communications_manager7.0(2a)su1cpe:2.3:a:cisco:unified_communications_manager:7.0\(2a\)su1:*:*:*:*:*:*:*
ciscounified_communications_manager7.0(2a)su2cpe:2.3:a:cisco:unified_communications_manager:7.0\(2a\)su2:*:*:*:*:*:*:*
ciscounified_communications_manager7.1(2a)cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\):*:*:*:*:*:*:*
ciscounified_communications_manager7.1(2a)su1cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\)su1:*:*:*:*:*:*:*
ciscounified_communications_manager7.1(2b)cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\):*:*:*:*:*:*:*
ciscounified_communications_manager7.1(2b)su1cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\)su1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	unified_communications_manager	7.0(1)su1	cpe:2.3:a:cisco:unified_communications_manager:7.0\(1\)su1:::::::*
cisco	unified_communications_manager	7.0(1)su1a	cpe:2.3:a:cisco:unified_communications_manager:7.0\(1\)su1a:::::::*
cisco	unified_communications_manager	7.0(2)	cpe:2.3:a:cisco:unified_communications_manager:7.0\(2\):::::::*
cisco	unified_communications_manager	7.0(2a)	cpe:2.3:a:cisco:unified_communications_manager:7.0\(2a\):::::::*
cisco	unified_communications_manager	7.0(2a)su1	cpe:2.3:a:cisco:unified_communications_manager:7.0\(2a\)su1:::::::*
cisco	unified_communications_manager	7.0(2a)su2	cpe:2.3:a:cisco:unified_communications_manager:7.0\(2a\)su2:::::::*
cisco	unified_communications_manager	7.1(2a)	cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\):::::::*
cisco	unified_communications_manager	7.1(2a)su1	cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\)su1:::::::*
cisco	unified_communications_manager	7.1(2b)	cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\):::::::*
cisco	unified_communications_manager	7.1(2b)su1	cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\)su1:::::::*

Rows per page:

1-10 of 271

References

www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.002

Percentile

53.2%

JSON

Related for NVD:CVE-2011-2561

prion1 cvelist1 cve1 securityvulns1