EUVD-2010-4651

Malware in sbrugna...

CVE-2015-0615

The call-handling implementation in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, 9.x before 9.12SU2, and 10.0 before 10.01SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service port consumption by improperly terminating SIP sessions, ak...

Design/Logic Flaw

The Connection Conversation Manager aka CuCsMgr process in Cisco Unity Connection 8.5 before 8.51SU7, 8.6 before 8.62aSU4, and 9.x before 9.12SU2, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service core dump and restart by improperly terminating SIP TCP...

CVE-2015-0612

Cisco Unity Connection is affected by CVE-2015-0612 (CuCsMgr DoS) when SIP trunk integration is enabled. Affected are 8.5 before 8.5(1)SU6, 8.6 before 8.6(2a)SU4, and 9.x before 9.1(2)SU2 (and 10.x prior to 10.0(1)SU1 per Nessus plugin). The issue arises from CuCsMgr’s improper handling of specif...

CVE-2015-0613

CVE-2015-0613 affects Cisco Unity Connection CuCsMgr: vulnerability arises when SIP trunk integration is enabled, allowing unauthenticated remote attackers to trigger a DoS (core dump and restart) by sending crafted SIP INVITE messages. Affected software includes Unity Connection 8.5 before 8.5(1...

CVE-2015-0615

CVE-2015-0615 affects Cisco Unity Connection; DoS via SIP call handling when SIP trunk integration is enabled. Affected versions: 8.5 (before 8.5(1)SU7), 8.6 (before 8.6(2a)SU4), 9.x (before 9.1(2)SU2), 10.0 (before 10.0(1)SU1). Root cause: SIP session termination can fail to release resources, l...

Multiple Vulnerabilities in Cisco Unity Connection

Cisco Unity Connection contains multiple vulnerabilities, when it is configured with Session Initiation Protocol SIP trunk integration. The vulnerabilities described in this advisory are denial of service vulnerabilities impacting the availability of Cisco Unity Connection for processing SIP...

CVE-2010-4686

CallManager Express CME on Cisco IOS before 15.01XA1 does not properly handle SIP TRUNK traffic that contains rate bursts and a "peculiar" request size, which allows remote attackers to cause a denial of service memory consumption by sending this traffic over a long duration, aka Bug ID CSCtb4795...

Design/Logic Flaw

CallManager Express CME on Cisco IOS before 15.01XA1 does not properly handle SIP TRUNK traffic that contains rate bursts and a "peculiar" request size, which allows remote attackers to cause a denial of service memory consumption by sending this traffic over a long duration, aka Bug ID CSCtb4795...

CVE-2010-4686

CallManager Express CME on Cisco IOS before 15.01XA1 does not properly handle SIP TRUNK traffic that contains rate bursts and a "peculiar" request size, which allows remote attackers to cause a denial of service memory consumption by sending this traffic over a long duration, aka Bug ID CSCtb4795...

CVE-2010-4686

Cisco IOS CME (CallManager Express) vulnerability CVE-2010-4686 affects CME up to version 15.0(1)XA1 and is triggered by SIP TRUNK traffic with rate bursts and a peculiar request size. The underlying cause is improper handling of such traffic, leading to memory consumption and remote denial of se...