Vulnerabilities > CVE-2010-2838 - Unspecified vulnerability in Cisco Unified Communications Manager

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

NVD

Published: 2010-08-26

Updated: 2010-09-09

Summary

The SendCombinedStatusInfo implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.0SU before 7.0(2a)SU3, 7.1 before 7.1(5), and 8.0 before 8.0(3) allows remote attackers to cause a denial of service (process failure) via a malformed SIP REGISTER message, aka Bug ID CSCtf66305. Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml 'Cisco bug ID CSCtd17310 and has been assigned the CVE identifier CVE-2010-2837. This vulnerability is fixed in Cisco Unified Communications Manager versions 6.1(5)SU1, 7.0(2a)SU3, 7.1(3b)SU2, 7.1(5) and 8.0(1). Cisco Unified Communications Manager version 4.x is not affected.'

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Unified Communications Manager 7.0\(1\)Su1 Cisco Unified Communications Manager 7.0\(1\)Su1A Cisco Unified Communications Manager 7.0\(2\) Cisco Unified Communications Manager 7.0\(2A\) Cisco Unified Communications Manager 7.0\(2A\)Su1 Cisco Unified Communications Manager - Cisco Unified Communications Manager 3.3\(5\) Cisco Unified Communications Manager 3.3\(5\)Sr1 Cisco Unified Communications Manager 3.3\(5\)Sr2A Cisco Unified Communications Manager 4.1 Cisco Unified Communications Manager 4.1\(3\) Cisco Unified Communications Manager 4.1\(3\)Sr1 Cisco Unified Communications Manager 4.1\(3\)Sr2 Cisco Unified Communications Manager 4.1\(3\)Sr3 Cisco Unified Communications Manager 4.1\(3\)Sr4 Cisco Unified Communications Manager 4.1\(3\)Sr6 Cisco Unified Communications Manager 4.1\(3\)Sr7 Cisco Unified Communications Manager 4.2 Cisco Unified Communications Manager 4.2\(3\)Sr3 Cisco Unified Communications Manager 4.2\(3\)Sr4 Cisco Unified Communications Manager 4.2.1 Cisco Unified Communications Manager 4.2.2 Cisco Unified Communications Manager 4.2.3 Cisco Unified Communications Manager 4.2.3Sr1 Cisco Unified Communications Manager 4.2.3Sr2 Cisco Unified Communications Manager 4.2.3Sr2B Cisco Unified Communications Manager 4.3 Cisco Unified Communications Manager 4.3\(1\) Cisco Unified Communications Manager 4.3\(2\) Cisco Unified Communications Manager 4.3\(2\)Sr1 Cisco Unified Communications Manager 5.0 Cisco Unified Communications Manager 5.1 Cisco Unified Communications Manager 5.1\(1\) Cisco Unified Communications Manager 5.1\(1B\) Cisco Unified Communications Manager 5.1\(1C\) Cisco Unified Communications Manager 5.1\(2\) Cisco Unified Communications Manager 5.1\(2A\) Cisco Unified Communications Manager 5.1\(2B\) Cisco Unified Communications Manager 5.1\(3\) Cisco Unified Communications Manager 5.1\(3A\) Cisco Unified Communications Manager 5.1\(3C\) Cisco Unified Communications Manager 5.1\(3D\) Cisco Unified Communications Manager 5.1\(3E\) Cisco Unified Communications Manager 5.1.2 Cisco Unified Communications Manager 6.0 Cisco Unified Communications Manager 6.0\(1\) Cisco Unified Communications Manager 6.0\(1A\) Cisco Unified Communications Manager 6.0\(1B\) Cisco Unified Communications Manager 6.1\(1\) Cisco Unified Communications Manager 6.1\(1A\) Cisco Unified Communications Manager 6.1\(1B\) Cisco Unified Communications Manager 6.1\(2\) Cisco Unified Communications Manager 6.1\(2\)Su1 Cisco Unified Communications Manager 6.1\(2\)Su1A Cisco Unified Communications Manager 6.1\(3\) Cisco Unified Communications Manager 6.1\(3A\) Cisco Unified Communications Manager 6.1\(3B\) Cisco Unified Communications Manager 6.1\(3B\)Su1 Cisco Unified Communications Manager 6.1\(4\) Cisco Unified Communications Manager 6.1\(4\)Su1 Cisco Unified Communications Manager 6.1\(4A\) Cisco Unified Communications Manager 6.1\(4A\)Su2 Cisco Unified Communications Manager 6.1\(4B\) Cisco Unified Communications Manager 6.1\(5\) Cisco Unified Communications Manager 6.1\(5\)Su1 Cisco Unified Communications Manager 6.1\(5\)Su2 Cisco Unified Communications Manager 6.1\(5\)Su3 Cisco Unified Communications Manager 7.0\(2A\)Su2 Cisco Unified Communications Manager 7.1\(2A\) Cisco Unified Communications Manager 7.1\(2A\)Su1 Cisco Unified Communications Manager 7.1\(2B\) Cisco Unified Communications Manager 7.1\(2B\)Su1 Cisco Unified Communications Manager 7.1\(3\) Cisco Unified Communications Manager 7.1\(3A\) Cisco Unified Communications Manager 7.1\(3A\)Su1 Cisco Unified Communications Manager 7.1\(3A\)Su1A Cisco Unified Communications Manager 7.1\(3B\) Cisco Unified Communications Manager 7.1\(3B\)Su1 Cisco Unified Communications Manager 7.1\(3B\)Su2 Cisco Unified Communications Manager 7.1\(5\) Cisco Unified Communications Manager 7.1\(5\)Su1 Cisco Unified Communications Manager 7.1\(1\) Cisco Unified Communications Manager 7.1\(2\) Cisco Unified Communications Manager 7.1\(5\)Su1A Cisco Unified Communications Manager 7.1\(5A\) Cisco Unified Communications Manager 7.1\(5B\) Cisco Unified Communications Manager 8.0\(2C\) Cisco Unified Communications Manager 8.0\(2C\)Su1 Cisco Unified Communications Manager 8.0\(3\)	89

Summary

Vulnerable Configurations

References