Vulnerabilities > CVE-2010-3048 - NULL Pointer Dereference vulnerability in Cisco Unified Personal Communicator 7.0(1.13056)

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

cisco

CWE-476

NVD

Published: 2020-01-16

Updated: 2020-01-24

Summary

Cisco Unified Personal Communicator 7.0 (1.13056) does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Unified Personal Communicator 7.0\(1.13056\)	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

http://www.fuzzmyapp.com/advisories/FMA-2010-002/FMA-2010-002-EN.xml