CVE-2011-0941

EUVD-2011-0953
Memory leak in Cisco Unified Communications Manager (CUCM) 6.x before 6.1(5)su2, 7.x before 7.1(5b)su3, 8.x before 8.0(3a)su1, and 8.5 before 8.5(1), and Cisco IOS 12.4 and 15.1, allows remote attackers to cause a denial of service (memory consumption and process failure or device reload) via a malformed SIP message, aka Bug IDs CSCti75128 and CSCtj09179.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
Affected Products (NVD)
VendorProductVersion
ciscounified_communications_manager
6.0
ciscounified_communications_manager
6.1\(1\)
ciscounified_communications_manager
6.1\(1a\)
ciscounified_communications_manager
6.1\(1b\)
ciscounified_communications_manager
6.1\(2\)
ciscounified_communications_manager
6.1\(2\)su1
ciscounified_communications_manager
6.1\(2\)su1a
ciscounified_communications_manager
6.1\(3\)
ciscounified_communications_manager
6.1\(3a\)
ciscounified_communications_manager
6.1\(3b\)
ciscounified_communications_manager
6.1\(3b\)su1
ciscounified_communications_manager
6.1\(4\)
ciscounified_communications_manager
6.1\(4\)su1
ciscounified_communications_manager
6.1\(4a\)
ciscounified_communications_manager
6.1\(4a\)su2
ciscounified_communications_manager
6.1\(5\)
ciscounified_communications_manager
6.1\(5\)su1
ciscounified_communications_manager
7.0\(1\)su1
ciscounified_communications_manager
7.0\(1\)su1a
ciscounified_communications_manager
7.0\(2\)
ciscounified_communications_manager
7.0\(2a\)
ciscounified_communications_manager
7.0\(2a\)su1
ciscounified_communications_manager
7.0\(2a\)su2
ciscounified_communications_manager
7.1\(2a\)
ciscounified_communications_manager
7.1\(2a\)su1
ciscounified_communications_manager
7.1\(2b\)
ciscounified_communications_manager
7.1\(2b\)su1
ciscounified_communications_manager
7.1\(3\)
ciscounified_communications_manager
7.1\(3a\)
ciscounified_communications_manager
7.1\(3a\)su1
ciscounified_communications_manager
7.1\(3a\)su1a
ciscounified_communications_manager
7.1\(3b\)
ciscounified_communications_manager
7.1\(3b\)su1
ciscounified_communications_manager
7.1\(3b\)su2
ciscounified_communications_manager
7.1\(5\)
ciscounified_communications_manager
7.1\(5\)su1
ciscounified_communications_manager
7.1\(5\)su1a
ciscounified_communications_manager
7.1\(5a\)
ciscounified_communications_manager
7.1\(5b\)
ciscounified_communications_manager
7.1\(5b\)su1
ciscounified_communications_manager
7.1\(5b\)su1a
ciscounified_communications_manager
7.1\(5b\)su2
ciscounified_communications_manager
8.0
ciscounified_communications_manager
8.0\(1\)
ciscounified_communications_manager
8.0\(2\)
ciscounified_communications_manager
8.0\(2a\)
ciscounified_communications_manager
8.0\(2b\)
ciscounified_communications_manager
8.0\(2c\)
ciscounified_communications_manager
8.0\(2c\)su1
ciscounified_communications_manager
8.0\(3a\)
ciscounified_communications_manager
8.5
ciscoios
12.4
ciscoios
15.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110928-cucm
http://tools.cisco.com/security/center/viewAlert.x?alertId=24525
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110928-cucm
http://tools.cisco.com/security/center/viewAlert.x?alertId=24525