Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0057

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2009-0057
Last Modified 07 Mar 2011 10:17:50
Published 22 Jan 2009 01:30:03
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0057

Summary

The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager 5.x before 5.1(3e) and 6.x before 6.1(3) allows remote attackers to cause a denial of service (voice service outage) by sending malformed input over a TCP session in which the "client terminates prematurely."

Vulnerable Systems

Application

  • Cisco Unified Communications Manager 5.0

  • Cisco Unified Communications Manager 5.0 1

  • Cisco Unified Communications Manager 5.0 2

  • Cisco Unified Communications Manager 5.0 3

  • Cisco Unified Communications Manager 5.0 3a

  • Cisco Unified Communications Manager 5.0 4

  • Cisco Unified Communications Manager 5.0 4a

  • Cisco Unified Communications Manager 5.0 4a Su1

  • Cisco Unified Communications Manager 5.1

  • Cisco Unified Communications Manager 5.1 %282a%29

  • Cisco Unified Communications Manager 5.1 1

  • Cisco Unified Communications Manager 5.1 2

  • Cisco Unified Communications Manager 5.1 2a

  • Cisco Unified Communications Manager 5.1 2b

  • Cisco Unified Communications Manager 5.1 3a

  • Cisco Unified Communications Manager 5.1%281%29

  • Cisco Unified Communications Manager 5.1%282%29

  • Cisco Unified Communications Manager 5.1%283c%29

  • Cisco Unified Communications Manager 5.1.2

  • Cisco Unified Communications Manager 6.0

  • Cisco Unified Communications Manager 6.0 1

  • Cisco Unified Communications Manager 6.0 1a

  • Cisco Unified Communications Manager 6.1

  • Cisco Unified Communications Manager 6.1 1a

  • Cisco Unified Communications Manager 6.1%282%29

  • Cisco Unified Communications Manager 6.1.0


References

XF - cucm-capf-dos-var1(48139)

VUPEN - ADV-2009-0213

SECTRACK - 1021620

BID - 33379

CISCO - 20090121 Cisco Unified Communications Manager CAPF Denial of Service Vulnerability

SECUNIA - 33588


Last Updated: 27 May 2016 10:50:06