Published: 26/08/2010 Updated: 09/09/2010

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Subscribe to Unified Communications Manager

The SIPStationInit implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.1SU prior to 6.1(5)SU1, 7.0SU prior to 7.0(2a)SU3, 7.1SU prior to 7.1(3b)SU2, 7.1 prior to 7.1(5), and 8.0 prior to 8.0(1) allows remote malicious users to cause a denial of service (process failure) via a malformed SIP message, aka Bug ID CSCtd17310.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco unified communications manager 6.1\\(3\\)
cisco unified communications manager 6.1\\(3a\\)
cisco unified communications manager
cisco unified communications manager 6.1\\(1\\)
cisco unified communications manager 6.1\\(1a\\)
cisco unified communications manager 6.1\\(3b\\)
cisco unified communications manager 6.1\\(3b\\)su1
cisco unified communications manager 6.1\\(1b\\)
cisco unified communications manager 6.1\\(2\\)
cisco unified communications manager 6.1\\(4\\)
cisco unified communications manager 6.1\\(4a\\)
cisco unified communications manager 6.1\\(2\\)su1
cisco unified communications manager 6.1\\(2\\)su1a
cisco unified communications manager 6.1\\(4\\)su1
cisco unified communications manager 6.1\\(4a\\)su2
cisco unified communications manager 7.0\\(1\\)su1
cisco unified communications manager 7.0\\(1\\)su1a
cisco unified communications manager 7.0\\(2\\)
cisco unified communications manager 7.0\\(2a\\)
cisco unified communications manager 7.0\\(2a\\)su1
cisco unified communications manager 7.1\\(2b\\)
cisco unified communications manager 7.1\\(2b\\)su1
cisco unified communications manager 7.1\\(3a\\)su1a
cisco unified communications manager 7.1\\(3b\\)su1
cisco unified communications manager 7.1\\(2a\\)
cisco unified communications manager 7.1\\(2a\\)su1
cisco unified communications manager 7.1\\(3b\\)su2
cisco unified communications manager 7.1\\(5\\)
cisco unified communications manager 7.1\\(3\\)
cisco unified communications manager 7.1\\(3a\\)
cisco unified communications manager 7.1\\(5a\\)
cisco unified communications manager 7.1\\(5b\\)
cisco unified communications manager 7.1\\(3b\\)
cisco unified communications manager 7.1\\(3a\\)su1
cisco unified communications manager 7.1\\(5\\)su1
cisco unified communications manager 8.0\\(2c\\)
cisco unified communications manager 8.0\\(2c\\)su1
cisco unified communications manager 8.0\\(3\\)

Cisco Unified Communications Manager contains two denial of service (DoS) vulnerabilities that affect the processing of Session Initiation Protocol (SIP) messages Exploitation of these vulnerabilities could cause an interruption of voice services Cisco has released software updates that address these vulnerabilities There are no workaro ...

NVD-CWE-Other http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml http://www.vupen.com/english/advisories/2010/2187 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20100825-cucm

CVE-2010-2837

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect