Vulnerabilities > CVE-2009-2874 - Denial of Service vulnerability in Cisco Unified Presence TimesTenD Process

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

NVD

Published: 2009-10-16

Updated: 2017-08-17

Summary

The TimesTenD process in Cisco Unified Presence 1.x, 6.x before 6.0(6), and 7.x before 7.0(4) allows remote attackers to cause a denial of service (process crash) via a large number of TCP connections to ports 16200 and 22794, aka Bug ID CSCsy17662.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Unified Presence Server 1.0 Cisco Unified Presence Server 1.0\(1\) Cisco Unified Presence Server 1.0\(2\) Cisco Unified Presence Server 1.0\(3\) Cisco Unified Presence Server 6.0 Cisco Unified Presence Server 6.0\(2\) Cisco Unified Presence Server 6.0\(3\) Cisco Unified Presence Server 6.0\(4\) Cisco Unified Presence Server 6.0\(5\) Cisco Unified Presence Server 7.0 Cisco Unified Presence Server 7.0\(2\) Cisco Unified Presence Server 7.0\(3\)	12

Summary

Vulnerable Configurations

References