Vulnerabilities > CVE-2004-1759 - Resource Management Errors vulnerability in multiple products

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

cisco

ibm

CWE-399

NVD

Published: 2004-01-21

Updated: 2017-07-11

Summary

Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, allows remote attackers to cause a denial of service (CPU consumption) via arbitrary packets to TCP port 14247, as demonstrated using port scanning.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Emergency Responder 1.1 Cisco IP Call Center Express Enhanced 3.0 Cisco IP Call Center Express Standard 3.0 Cisco IP Interactive Voice Response 3.0 Cisco Personal Assistant 1.3\(1\) Cisco Personal Assistant 1.3\(2\) Cisco Personal Assistant 1.3\(3\) Cisco Personal Assistant 1.3\(4\) Cisco Personal Assistant 1.4\(1\) Cisco Personal Assistant 1.4\(2\)	10
Application	Ibm IBM Director Agent 2.2 IBM Director Agent 3.11	2
Hardware	Cisco Cisco Call Manager 1.0 Cisco Call Manager 2.0 Cisco Call Manager 3.0 Cisco Call Manager 3.1 Cisco Call Manager 3.1\(2\) Cisco Call Manager 3.1\(3A\) Cisco Call Manager 3.2 Cisco Call Manager 3.3 Cisco Call Manager 3.3\(3\) Cisco Call Manager 4.0 Cisco Internet Service Node *	11
Hardware	Ibm IBM MCS 7815 1000 * IBM MCS 7815I 2.0 * IBM MCS 7835I 2.4 * IBM MCS 7835I 3.0 * IBM X330 8654 IBM X330 8674 IBM X340 * IBM X342 * IBM X345 *	9
OS	Cisco Cisco Conference Connection 1.1\(1\) Cisco Conference Connection 1.2	2

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References