Published: 27/02/2013 Updated: 28/02/2013

CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6

VMScore: 632

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Subscribe to Unified Communications Manager

The Location Bandwidth Manager (LBM) Intracluster-communication feature in Cisco Unified Communications Manager (CUCM) 9.x prior to 9.1(1) does not require authentication from the remote LBM Hub node, which allows remote malicious users to conduct cache-poisoning attacks against transaction records, and cause a denial of service (bandwidth-pool consumption and call outage), via unspecified vectors, aka Bug ID CSCub28920.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco unified communications manager 9.0\\(1\\)

Cisco Unified Communications Manager contains two vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition Exploitation of these vulnerabilities could cause an interruption of voice services Cisco has released software updates that address these vulnerabilities This advisory is available ...

CWE-287 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130227-cucm https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130227-cucm

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-1134

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect