Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2010-0591

Published: 05/03/2010 Updated: 05/03/2010
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Cisco

Vulnerability Summary

Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x prior to 6.1(5), 7.x prior to 7.1(3b)SU2, and 8.x prior to 8.0(1) allows remote malicious users to cause a denial of service (process failure) via a malformed SIP REG message, related to an overflow of the Telephone-URL field, aka Bug ID CSCtc62362.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco unified communications manager 6.1\\(2\\)su1

cisco unified communications manager 6.1\\(2\\)su1a

cisco unified communications manager 6.1\\(3\\)

cisco unified communications manager 6.1\\(4\\)

cisco unified communications manager 8.0

cisco unified communications manager 6.0

cisco unified communications manager 6.0\\(1\\)

cisco unified communications manager 6.0\\(1a\\)

cisco unified communications manager 7.0

cisco unified communications manager 7.0\\(2\\)

cisco unified communications manager 6.1\\(1\\)

cisco unified communications manager 6.1\\(1b\\)

cisco unified communications manager 7.0\\(1\\)

cisco unified communications manager 7.1

cisco unified communications manager 6.1

cisco unified communications manager 6.1\\(1a\\)

cisco unified communications manager 6.1\\(2\\)

cisco unified communications manager 6.1.0

Vendor Advisories

Cisco: Cisco Digital Media Player Remote Display Unauthorized Content Injection Vulnerability
A vulnerability exists in the Cisco Digital Media Player that could allow an unauthenticated attacker to inject video or data content into a remote display Cisco has released software updates that address this vulnerability There are no workarounds available to mitigate this vulnerability This additional advisory is posted at http ...
Cisco: Cisco Unified Communications Manager Denial of Service Vulnerabilities
Cisco Unified Communications Manager (formerly Cisco CallManager) contains multiple denial of service (DoS) vulnerabilities that if exploited could cause an interruption of voice services The Session Initiation Protocol (SIP), Skinny Client Control Protocol (SCCP) and Computer Telephony Integration (CTI) Manager services are affected by th ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/38498http://securitytracker.com/id?1023670http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1b924.shtmlhttps://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20100303-dmp
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook