CVE-2010-2837

EUVD-2010-2841
The SIPStationInit implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.1SU before 6.1(5)SU1, 7.0SU before 7.0(2a)SU3, 7.1SU before 7.1(3b)SU2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SIP message, aka Bug ID CSCtd17310.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
Affected Products (NVD)
VendorProductVersion
ciscounified_communications_manager
𝑥
≤ 6.1\(5\)
ciscounified_communications_manager
6.1\(1\)
ciscounified_communications_manager
6.1\(1a\)
ciscounified_communications_manager
6.1\(1b\)
ciscounified_communications_manager
6.1\(2\)
ciscounified_communications_manager
6.1\(2\)su1
ciscounified_communications_manager
6.1\(2\)su1a
ciscounified_communications_manager
6.1\(3\)
ciscounified_communications_manager
6.1\(3a\)
ciscounified_communications_manager
6.1\(3b\)
ciscounified_communications_manager
6.1\(3b\)su1
ciscounified_communications_manager
6.1\(4\)
ciscounified_communications_manager
6.1\(4\)su1
ciscounified_communications_manager
6.1\(4a\)
ciscounified_communications_manager
6.1\(4a\)su2
ciscounified_communications_manager
𝑥
≤ 7.0\(2a\)su2
ciscounified_communications_manager
7.0\(1\)su1
ciscounified_communications_manager
7.0\(1\)su1a
ciscounified_communications_manager
7.0\(2\)
ciscounified_communications_manager
7.0\(2a\)
ciscounified_communications_manager
7.0\(2a\)su1
ciscounified_communications_manager
𝑥
≤ 7.1\(5\)su1a
ciscounified_communications_manager
7.1\(2a\)
ciscounified_communications_manager
7.1\(2a\)su1
ciscounified_communications_manager
7.1\(2b\)
ciscounified_communications_manager
7.1\(2b\)su1
ciscounified_communications_manager
7.1\(3\)
ciscounified_communications_manager
7.1\(3a\)
ciscounified_communications_manager
7.1\(3a\)su1
ciscounified_communications_manager
7.1\(3a\)su1a
ciscounified_communications_manager
7.1\(3b\)
ciscounified_communications_manager
7.1\(3b\)su1
ciscounified_communications_manager
7.1\(3b\)su2
ciscounified_communications_manager
7.1\(5\)
ciscounified_communications_manager
7.1\(5\)su1
ciscounified_communications_manager
7.1\(5a\)
ciscounified_communications_manager
7.1\(5b\)
ciscounified_communications_manager
8.0\(2c\)
ciscounified_communications_manager
8.0\(2c\)su1
ciscounified_communications_manager
8.0\(3\)
𝑥
= Vulnerable software versions
References
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml
http://www.vupen.com/english/advisories/2010/2187
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml
http://www.vupen.com/english/advisories/2010/2187