VRDA Feed by JPCERT/CC
  Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis
[ about VRDA Feed | JPCERT/CC



 
Vulnerability Analysis Result (Revision No : 1) [ Download XML
CVE-2010-2837
unified_communications_manager: The SIPStationInit implementation in Cisco Unified ...
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2837

Original

The SIPStationInit implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.1SU before 6.1(5)SU1, 7.0SU before 7.0(2a)SU3, 7.1SU before 7.1(3b)SU2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SIP message, aka Bug ID CSCtd17310.

Translation   (Show)





About This Analysis Information
Analysis Information Provider:
NIST NVD
First Published:
2010-08-26
Source Information Category:
Advisory, Alert
Last Updated:
2010-08-27




Affected Product Tags
cpe:/a:cisco:unified_communications_manager:6.1%281%29
cpe:/a:cisco:unified_communications_manager:6.1%281a%29
cpe:/a:cisco:unified_communications_manager:6.1%281b%29
cpe:/a:cisco:unified_communications_manager:6.1%282%29
cpe:/a:cisco:unified_communications_manager:6.1%282%29su1
cpe:/a:cisco:unified_communications_manager:6.1%282%29su1a
cpe:/a:cisco:unified_communications_manager:6.1%283%29
cpe:/a:cisco:unified_communications_manager:6.1%283a%29
cpe:/a:cisco:unified_communications_manager:6.1%283b%29
cpe:/a:cisco:unified_communications_manager:6.1%283b%29su1
cpe:/a:cisco:unified_communications_manager:6.1%284%29
cpe:/a:cisco:unified_communications_manager:6.1%284%29su1
cpe:/a:cisco:unified_communications_manager:6.1%284a%29
cpe:/a:cisco:unified_communications_manager:6.1%284a%29su2
cpe:/a:cisco:unified_communications_manager:6.1%285%29 and previous versions
cpe:/a:cisco:unified_communications_manager:7.0%281%29su1
cpe:/a:cisco:unified_communications_manager:7.0%281%29su1a
cpe:/a:cisco:unified_communications_manager:7.0%282%29
cpe:/a:cisco:unified_communications_manager:7.0%282a%29
cpe:/a:cisco:unified_communications_manager:7.0%282a%29su1
cpe:/a:cisco:unified_communications_manager:7.0%282a%29su2 and previous versions
cpe:/a:cisco:unified_communications_manager:7.1%282a%29
cpe:/a:cisco:unified_communications_manager:7.1%282a%29su1
cpe:/a:cisco:unified_communications_manager:7.1%282b%29
cpe:/a:cisco:unified_communications_manager:7.1%282b%29su1
cpe:/a:cisco:unified_communications_manager:7.1%283%29
cpe:/a:cisco:unified_communications_manager:7.1%283a%29
cpe:/a:cisco:unified_communications_manager:7.1%283a%29su1
cpe:/a:cisco:unified_communications_manager:7.1%283a%29su1a
cpe:/a:cisco:unified_communications_manager:7.1%283b%29
cpe:/a:cisco:unified_communications_manager:7.1%283b%29su1
cpe:/a:cisco:unified_communications_manager:7.1%283b%29su2
cpe:/a:cisco:unified_communications_manager:7.1%285%29
cpe:/a:cisco:unified_communications_manager:7.1%285%29su1
cpe:/a:cisco:unified_communications_manager:7.1%285%29su1a and previous versions
cpe:/a:cisco:unified_communications_manager:7.1%285a%29
cpe:/a:cisco:unified_communications_manager:7.1%285b%29
cpe:/a:cisco:unified_communications_manager:8.0%282c%29
cpe:/a:cisco:unified_communications_manager:8.0%282c%29su1
cpe:/a:cisco:unified_communications_manager:8.0%283%29
 


Vulnerability Analysis Results
[Access Vector]  [?]
Undefined [?]

Local [?]
Adjacent Network [?]
X Network [?]
[Access Complexit]  [?]
Undefined [?]

High [?]
Medium [?]
X Low [?]
[Authentication]  [?]
Undefined [?]

Multiple [?]
Single [?]
X None [?]
[Confidentiality Impact]  [?]
Undefined [?]

X None [?]
Partial [?]
Complete [?]
[Integrity Impact]  [?]
Undefined [?]

X None [?]
Partial [?]
Complete [?]
[Availability Impact]  [?]
Undefined [?]

None [?]
Partial [?]
X Complete [?]
Alternatives




References
CISCO 20100825 Cisco Unified Communications Manager Denial of Service Vulnerabilities




Vulnerability Type Other (NVD-CWE-Other)




Copyright © 2010 JPCERT/CC All Rights Reserved.