Vulnerability Description
Cisco Unified Communications Manager (aka CUCM, formerly CallManager) before 6.1(1) allows remote attackers to cause a denial of service (voice-services outage) via a malformed header in a SIP message, aka Bug ID CSCsi46466.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Unified Communications Manager | < 6.1\(1\) |
References
- http://osvdb.org/57452Broken Link
- http://secunia.com/advisories/36495Third Party Advisory
- http://secunia.com/advisories/36499Third Party Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af2d11.sPatchVendor Advisory
- http://www.securityfocus.com/bid/36152Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id?1022775Third Party AdvisoryVDB Entry
- http://osvdb.org/57452Broken Link
- http://secunia.com/advisories/36495Third Party Advisory
- http://secunia.com/advisories/36499Third Party Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af2d11.sPatchVendor Advisory
- http://www.securityfocus.com/bid/36152Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id?1022775Third Party AdvisoryVDB Entry
FAQ
What is CVE-2009-2050?
CVE-2009-2050 is a vulnerability with a CVSS score of 7.8 (HIGH). Cisco Unified Communications Manager (aka CUCM, formerly CallManager) before 6.1(1) allows remote attackers to cause a denial of service (voice-services outage) via a malformed header in a SIP message...
How severe is CVE-2009-2050?
CVE-2009-2050 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-2050?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Communications Manager.