Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1744

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-1744
Last Modified 07 Mar 2011 10:07:34
Published 16 May 2008 08:54:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1744

Summary

The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager (CUCM) 4.1 before 4.1(3)SR7, 4.2 before 4.2(3)SR4, and 4.3 before 4.3(2) allows remote attackers to cause a denial of service (service crash) via malformed network traffic, aka Bug ID CSCsk46770.

Vulnerable Systems

Application

  • Cisco Unified Callmanager 4.1

  • Cisco Unified Callmanager 4.1 3 Sr4

  • Cisco Unified Callmanager 4.1 3 Sr5

  • Cisco Unified Callmanager 4.1 3 Sr5b

  • Cisco Unified Callmanager 4.1 3 Sr5c

  • Cisco Unified Communications Manager 4.2 3 Sr2

  • Cisco Unified Communications Manager 4.2 3 Sr2b

  • Cisco Unified Communications Manager 4.2 3 Sr3

  • Cisco Unified Communications Manager 4.3

  • Cisco Unified Communications Manager 4.3 1 Sr1

  • Cisco Unified Communications Manager 5.1 1

  • Cisco Unified Communications Manager 5.1 2

  • Cisco Unified Communications Manager 5.1 2a

  • Cisco Unified Communications Manager 5.1 2b

  • Cisco Unified Communications Manager 5.1 3a

  • Cisco Unified Communications Manager 6.0

  • Cisco Unified Communications Manager 6.0 1

  • Cisco Unified Communications Manager 6.0 1a

  • Cisco Unified Communications Manager 6.1

  • Cisco Unified Communications Manager 6.1 1a


References

XF - cucm-capf-dos(42415)

VUPEN - ADV-2008-1533

BID - 29221

CISCO - 20080514 Cisco Unified Communications Manager Denial of Service Vulnerabilities

SECTRACK - 1020022

SECUNIA - 30238


Last Updated: 27 May 2016 10:47:38