Vulnerability Description
Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 5.x before 5.1(3g), 6.x before 6.1(4), 7.0.x before 7.0(2a)su1, and 7.1.x before 7.1(2) allows remote attackers to cause a denial of service (service restart) via malformed SIP messages, aka Bug ID CSCsz95423.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Unified Callmanager | 5.0\(1\) |
| Cisco | Unified Communications Manager | 5.1\(1b\) |
References
- http://osvdb.org/58344
- http://secunia.com/advisories/36836Vendor Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=18883Patch
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8118.sVendor Advisory
- http://www.securityfocus.com/bid/36496
- http://www.securitytracker.com/id?1022931
- http://www.vupen.com/english/advisories/2009/2757Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53447
- http://osvdb.org/58344
- http://secunia.com/advisories/36836Vendor Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=18883Patch
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8118.sVendor Advisory
- http://www.securityfocus.com/bid/36496
- http://www.securitytracker.com/id?1022931
- http://www.vupen.com/english/advisories/2009/2757Vendor Advisory
FAQ
What is CVE-2009-2864?
CVE-2009-2864 is a vulnerability with a CVSS score of 7.8 (HIGH). Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 5.x before 5.1(3g), 6.x before 6.1(4), 7.0.x before 7.0(2a)su1, and 7.1.x before 7.1(2) allows remote attackers to cause a denial ...
How severe is CVE-2009-2864?
CVE-2009-2864 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-2864?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Callmanager, Cisco Unified Communications Manager.