424 matches found
Information disclosure
The call-handling implementation in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, 9.x before 9.12SU2, and 10.0 before 10.01SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service port consumption by improperly terminating SIP sessions, ak...
Design/Logic Flaw
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, and 9.x before 9.12SU2, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service core dump and restart by improperly terminating SIP TCP...
Design/Logic Flaw
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, 9.x before 9.12SU2, and 10.0 before 10.01SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service core dump and restart via crafted SI...
CVE-2015-0612
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU6, 8.6 before 8.62aSU4, and 9.x before 9.12SU2, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service SIP outage via a crafted UDP packet, aka Bug ID CSCuh25062...
Design/Logic Flaw
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, 9.x before 9.12SU2, and 10.0 before 10.01SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service core dump and restart via crafted SI...
CVE-2015-0615
The call-handling implementation in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, 9.x before 9.12SU2, and 10.0 before 10.01SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service port consumption by improperly terminating SIP sessions, ak...
CVE-2015-0613
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, 9.x before 9.12SU2, and 10.0 before 10.01SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service core dump and restart via crafted SI...
CVE-2015-0613
CVE-2015-0613 affects Cisco Unity Connection CuCsMgr: vulnerability arises when SIP trunk integration is enabled, allowing unauthenticated remote attackers to trigger a DoS (core dump and restart) by sending crafted SIP INVITE messages. Affected software includes Unity Connection 8.5 before 8.5(1...
CVE-2015-0616
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, and 9.x before 9.12SU2, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service core dump and restart by improperly terminating SIP TCP...
CVE-2015-0612
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU6, 8.6 before 8.62aSU4, and 9.x before 9.12SU2, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service SIP outage via a crafted UDP packet, aka Bug ID CSCuh25062...
CVE-2015-0616
CVE-2015-0616 affects Cisco Unity Connection’s Connection Conversation Manager (CuCsMgr) when SIP trunk integration is enabled. The vulnerability allows an unauthenticated, remote attacker to cause a denial of service (core dump and restart) by improperly terminating SIP TCP connections. Affected...
CVE-2015-0612
Cisco Unity Connection is affected by CVE-2015-0612 (CuCsMgr DoS) when SIP trunk integration is enabled. Affected are 8.5 before 8.5(1)SU6, 8.6 before 8.6(2a)SU4, and 9.x before 9.1(2)SU2 (and 10.x prior to 10.0(1)SU1 per Nessus plugin). The issue arises from CuCsMgr’s improper handling of specif...
CVE-2015-0614
CVE-2015-0614 affects Cisco Unity Connection CuCsMgr and is triggered when SIP trunk integration is enabled. The vulnerability allows unauthenticated remote attackers to cause a denial of service (core dump and restart) by sending crafted SIP INVITE messages to affected versions (8.5 < 8.5(1)S...
CVE-2015-0614
The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, 9.x before 9.12SU2, and 10.0 before 10.01SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service core dump and restart via crafted SI...
CVE-2015-0615
CVE-2015-0615 affects Cisco Unity Connection; DoS via SIP call handling when SIP trunk integration is enabled. Affected versions: 8.5 (before 8.5(1)SU7), 8.6 (before 8.6(2a)SU4), 9.x (before 9.1(2)SU2), 10.0 (before 10.0(1)SU1). Root cause: SIP session termination can fail to release resources, l...
Cisco Unity Connection SIP Trunk Integration Tailored INVITE Message Denial of Service Vulnerability (CNVD-2015-02193)
Cisco Unity Connection is a feature-rich voice messaging platform that uses the Linux Unified Communications operating system. A security vulnerability exists in the Connection Conversation Manager CuCsMgr process of Cisco Unity Connection. An unauthenticated, remote attacker could trigger a...
Multiple Vulnerabilities in Cisco Unity Connection
Cisco Unity Connection contains multiple vulnerabilities, when it is configured with Session Initiation Protocol SIP trunk integration. The vulnerabilities described in this advisory are denial of service vulnerabilities impacting the availability of Cisco Unity Connection for processing SIP...
CVE-2014-7988
The Unified Messaging Service UMS in Cisco Unity Connection 10.5 and earlier allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCur06493...
Code injection
The Unified Messaging Service UMS in Cisco Unity Connection 10.5 and earlier allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCur06493...
CVE-2014-7988
The Unified Messaging Service UMS in Cisco Unity Connection 10.5 and earlier allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCur06493...