Cisco CallManager 3.2 and previous versions, 3.3 prior to 3.3(5)SR1, 4.0 prior to 4.0(2a)SR2c, and 4.1 prior to 4.1(3)SR2 allow remote malicious users to (1) cause a denial of service (CPU and memory consumption) via a large number of open TCP connections to port 2000 and (2) cause a denial of service (fill the Windows Service Manager communication queue) via a large number of TCP connections to port 2001, 2002, or 7727.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco call manager |
||
cisco call manager 3.2 |
||
cisco call manager 3.3 |
||
cisco call manager 3.3\\(3\\) |
||
cisco call manager 4.0\\(2a\\)es62 |
||
cisco call manager 4.0\\(2a\\)sr2b |
||
cisco call manager 3.1\\(2\\) |
||
cisco call manager 3.1\\(3a\\) |
||
cisco call manager 4.0 |
||
cisco call manager 4.0\\(2a\\)es40 |
||
cisco call manager 4.1\\(3\\)sr1 |
||
cisco call manager 3.0 |
||
cisco call manager 3.1 |
||
cisco call manager 3.3\\(5\\) |
||
cisco call manager 3.3\\(5\\)es30 |
||
cisco call manager 4.1\\(3\\)es07 |
||
cisco call manager 4.1\\(3\\)es32 |
||
cisco call manager 1.0 |
||
cisco call manager 2.0 |
||
cisco call manager 3.3\\(3\\)es61 |
||
cisco call manager 3.3\\(4\\)es25 |
||
cisco call manager 4.1\\(2\\)es33 |
||
cisco call manager 4.1\\(2\\)es55 |
Vulmon