Vulnerabilities > CVE-2011-4486 - Resource Management Errors vulnerability in Cisco products

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

CWE-399

NVD

Published: 2012-03-01

Updated: 2012-03-01

Summary

Cisco Unified Communications Manager (CUCM) with software 6.x and 7.x before 7.1(5b)su5, 8.0 before 8.0(3a)su3, and 8.5 and 8.6 before 8.6(2a)su1 and Cisco Business Edition 3000 with software before 8.6.3 and 5000 and 6000 with software before 8.6(2a)su1 allow remote attackers to cause a denial of service (device reload) via a crafted SCCP registration, aka Bug ID CSCtu73538. Per: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-cucm 'The following products are affected by the vulnerabilities that are described in this advisory: * Cisco Unified Communications Manager Software versions 6.x * Cisco Unified Communications Manager Software versions 7.x * Cisco Unified Communications Manager Software versions 8.x'

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Unified Communications Manager 6.0 Cisco Unified Communications Manager 6.0\(1\) Cisco Unified Communications Manager 6.0\(1A\) Cisco Unified Communications Manager 6.0\(1B\) Cisco Unified Communications Manager 6.1\(1\) Cisco Unified Communications Manager 6.1\(1A\) Cisco Unified Communications Manager 6.1\(1B\) Cisco Unified Communications Manager 6.1\(2\) Cisco Unified Communications Manager 6.1\(2\)Su1 Cisco Unified Communications Manager 6.1\(2\)Su1A Cisco Unified Communications Manager 6.1\(3\) Cisco Unified Communications Manager 6.1\(3A\) Cisco Unified Communications Manager 6.1\(3B\) Cisco Unified Communications Manager 6.1\(3B\)Su1 Cisco Unified Communications Manager 6.1\(4\) Cisco Unified Communications Manager 6.1\(4\)Su1 Cisco Unified Communications Manager 6.1\(4A\) Cisco Unified Communications Manager 6.1\(4A\)Su2 Cisco Unified Communications Manager 6.1\(5\) Cisco Unified Communications Manager 6.1\(5\)Su1 Cisco Unified Communications Manager 6.1\(5\)Su2 Cisco Unified Communications Manager 6.1\(5\)Su3 Cisco Unified Communications Manager 7.0\(1\)Su1 Cisco Unified Communications Manager 7.0\(1\)Su1A Cisco Unified Communications Manager 7.0\(2\) Cisco Unified Communications Manager 7.0\(2A\) Cisco Unified Communications Manager 7.0\(2A\)Su1 Cisco Unified Communications Manager 7.0\(2A\)Su2 Cisco Unified Communications Manager 7.1\(2A\) Cisco Unified Communications Manager 7.1\(2A\)Su1 Cisco Unified Communications Manager 7.1\(2B\) Cisco Unified Communications Manager 7.1\(2B\)Su1 Cisco Unified Communications Manager 7.1\(3\) Cisco Unified Communications Manager 7.1\(3A\) Cisco Unified Communications Manager 7.1\(3A\)Su1 Cisco Unified Communications Manager 7.1\(3A\)Su1A Cisco Unified Communications Manager 7.1\(3B\) Cisco Unified Communications Manager 7.1\(3B\)Su1 Cisco Unified Communications Manager 7.1\(3B\)Su2 Cisco Unified Communications Manager 7.1\(5\) Cisco Unified Communications Manager 7.1\(5\)Su1 Cisco Unified Communications Manager 7.1\(5\)Su1A Cisco Unified Communications Manager 7.1\(5A\) Cisco Unified Communications Manager 7.1\(5B\) Cisco Unified Communications Manager 7.1\(5B\)Su1 Cisco Unified Communications Manager 7.1\(5B\)Su1A Cisco Unified Communications Manager 7.1\(5B\)Su2 Cisco Unified Communications Manager 7.1\(5B\)Su3 Cisco Unified Communications Manager 7.1\(5B\)Su4 Cisco Unified Communications Manager 8.0 Cisco Unified Communications Manager 8.0\(1\) Cisco Unified Communications Manager 8.0\(2\) Cisco Unified Communications Manager 8.0\(2A\) Cisco Unified Communications Manager 8.0\(2B\) Cisco Unified Communications Manager 8.0\(2C\) Cisco Unified Communications Manager 8.0\(2C\)Su1 Cisco Unified Communications Manager 8.0\(3\) Cisco Unified Communications Manager 8.0\(3A\) Cisco Unified Communications Manager 8.0\(3A\)Su1 Cisco Unified Communications Manager 8.0\(3A\)Su2 Cisco Unified Communications Manager 8.5 Cisco Unified Communications Manager 8.5\(1\) Cisco Unified Communications Manager 8.5\(1\)Su1 Cisco Unified Communications Manager 8.5\(1\)Su2 Cisco Unified Communications Manager 8.5\(1\)Su3 Cisco Unified Communications Manager 8.6 Cisco Unified Communications Manager 8.6\(1\) Cisco Unified Communications Manager 8.6\(1A\) Cisco Unified Communications Manager 8.6\(2\) Cisco Unified Communications Manager 8.6\(2A\) Cisco Business Edition 3000 Software 8.6\(1\) Cisco Business Edition 3000 Software 8.6\(1A\) Cisco Business Edition 3000 Software 8.6\(2A\) Cisco Business Edition 3000 Software 8.6.2 Cisco Business Edition 5000 Software 8.5 Cisco Business Edition 5000 Software 8.5\(1\) Cisco Business Edition 5000 Software 8.6 Cisco Business Edition 5000 Software 8.6\(1\) Cisco Business Edition 5000 Software 8.6\(1A\) Cisco Business Edition 5000 Software 8.6\(2\) Cisco Business Edition 5000 Software 8.6\(2A\) Cisco Business Edition 6000 Software 8.5\(1\) Cisco Business Edition 6000 Software 8.5\(1\)Su1 Cisco Business Edition 6000 Software 8.5\(1\)Su2 Cisco Business Edition 6000 Software 8.5\(1\)Su3 Cisco Business Edition 6000 Software 8.5\(1-2011O\) Cisco Business Edition 6000 Software 8.6\(1\) Cisco Business Edition 6000 Software 8.6\(1A\) Cisco Business Edition 6000 Software 8.6\(2\) Cisco Business Edition 6000 Software 8.6\(2A\)	90
Hardware	Cisco Cisco Business Edition 3000 - Cisco Business Edition 5000 - Cisco Business Edition 6000 -	3

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-cucm