Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1746

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-1746
Last Modified 07 Mar 2011 10:07:34
Published 16 May 2008 08:54:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1746

Summary

The SNMP Trap Agent service in Cisco Unified Communications Manager (CUCM) 4.1 before 4.1(3)SR6, 4.2 before 4.2(3)SR3, 4.3 before 4.3(2), 5.x before 5.1(3), and 6.x before 6.1(1) allows remote attackers to cause a denial of service (core dump and service restart) via a series of malformed UDP packets, as demonstrated by the IP Stack Integrity Checker (ISIC), aka Bug ID CSCsj24113.

Vulnerable Systems

Application

  • Cisco Unified Communications Manager 4.1

  • Cisco Unified Communications Manager 4.2

  • Cisco Unified Communications Manager 4.3

  • Cisco Unified Communications Manager 5.1

  • Cisco Unified Communications Manager 6.0

  • Cisco Unified Communications Manager 6.1


References

XF - cucm-snmp-dos(42420)

VUPEN - ADV-2008-1533

BID - 29221

CISCO - 20080514 Cisco Unified Communications Manager Denial of Service Vulnerabilities

SECTRACK - 1020022

SECUNIA - 30238


Last Updated: 27 May 2016 10:47:38