2 matches found
Command injection
The SendCombinedStatusInfo implementation in Cisco Unified Communications Manager aka CUCM, formerly CallManager 7.0SU before 7.02aSU3, 7.1 before 7.15, and 8.0 before 8.03 allows remote attackers to cause a denial of service process failure via a malformed SIP REGISTER message, aka Bug ID...
CVE-2010-2838
CVE-2010-2838 affects Cisco Unified Communications Manager (CUCM). The vulnerability is caused by the SendCombinedStatusInfo implementation in CUCM’s SIP handling, where a malformed SIP REGISTER message can trigger a denial of service (process failure). Affected CUCM versions are 7.0(2a)SU3, 7.1(...