CVE-2011-2072

Memory leak in Cisco IOS 12.4, 15.0, and 15.1, Cisco IOS XE 2.5.x through 3.2.x, and Cisco Unified Communications Manager (CUCM) 6.x and 7.x before 7.1(5b)su4, 8.x before 8.5(1)su2, and 8.6 before 8.6(1) allows remote attackers to cause a denial of service (memory consumption and device reload or process failure) via a malformed SIP message, aka Bug IDs CSCtl86047 and CSCto88686.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
ciscoios
12.4
ciscoios
15.0
ciscoios
15.1
ciscoios_xe
2.5.0
ciscoios_xe
2.5.1
ciscoios_xe
2.5.2
ciscoios_xe
2.6.0
ciscoios_xe
2.6.1
ciscoios_xe
2.6.2
ciscoios_xe
3.1.0s:s
ciscoios_xe
3.1.1s:s
ciscoios_xe
3.1.2s:s
ciscoios_xe
3.1.3s:s
ciscoios_xe
3.1.4s:s
ciscoios_xe
3.2.0s:s
ciscoios_xe
3.2.1s:s
ciscoios_xe
3.2.2s:s
ciscounified_communications_manager
6.0
ciscounified_communications_manager
6.1\(1\)
ciscounified_communications_manager
6.1\(1a\)
ciscounified_communications_manager
6.1\(1b\)
ciscounified_communications_manager
6.1\(2\)
ciscounified_communications_manager
6.1\(2\)su1
ciscounified_communications_manager
6.1\(2\)su1a
ciscounified_communications_manager
6.1\(3\)
ciscounified_communications_manager
6.1\(3a\)
ciscounified_communications_manager
6.1\(3b\)
ciscounified_communications_manager
6.1\(3b\)su1
ciscounified_communications_manager
6.1\(4\)
ciscounified_communications_manager
6.1\(4\)su1
ciscounified_communications_manager
6.1\(4a\)
ciscounified_communications_manager
6.1\(4a\)su2
ciscounified_communications_manager
6.1\(5\)
ciscounified_communications_manager
6.1\(5\)su1
ciscounified_communications_manager
6.1\(5\)su2
ciscounified_communications_manager
7.0\(1\)su1
ciscounified_communications_manager
7.0\(1\)su1a
ciscounified_communications_manager
7.0\(2\)
ciscounified_communications_manager
7.0\(2a\)
ciscounified_communications_manager
7.0\(2a\)su1
ciscounified_communications_manager
7.0\(2a\)su2
ciscounified_communications_manager
7.1\(2a\)
ciscounified_communications_manager
7.1\(2a\)su1
ciscounified_communications_manager
7.1\(2b\)
ciscounified_communications_manager
7.1\(2b\)su1
ciscounified_communications_manager
7.1\(3\)
ciscounified_communications_manager
7.1\(3a\)
ciscounified_communications_manager
7.1\(3a\)su1
ciscounified_communications_manager
7.1\(3a\)su1a
ciscounified_communications_manager
7.1\(3b\)
ciscounified_communications_manager
7.1\(3b\)su1
ciscounified_communications_manager
7.1\(3b\)su2
ciscounified_communications_manager
7.1\(5\)
ciscounified_communications_manager
7.1\(5\)su1
ciscounified_communications_manager
7.1\(5\)su1a
ciscounified_communications_manager
7.1\(5a\)
ciscounified_communications_manager
7.1\(5b\)
ciscounified_communications_manager
7.1\(5b\)su1
ciscounified_communications_manager
7.1\(5b\)su1a
ciscounified_communications_manager
7.1\(5b\)su2
ciscounified_communications_manager
7.1\(5b\)su3
ciscounified_communications_manager
8.0\(1\)
ciscounified_communications_manager
8.0\(2\)
ciscounified_communications_manager
8.0\(2a\)
ciscounified_communications_manager
8.0\(2b\)
ciscounified_communications_manager
8.0\(2c\)
ciscounified_communications_manager
8.0\(2c\)su1
ciscounified_communications_manager
8.0\(3\)
ciscounified_communications_manager
8.0\(3a\)
ciscounified_communications_manager
8.0\(3a\)su1
ciscounified_communications_manager
8.0\(3a\)su2
ciscounified_communications_manager
8.5\(1\)
ciscounified_communications_manager
8.5\(1\)su1
ciscounified_communications_manager
8.6
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110928-cucm
http://tools.cisco.com/security/center/viewAlert.x?alertId=24129
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d58.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d5a.shtml
http://www.securitytracker.com/id?1026110
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110928-cucm
http://tools.cisco.com/security/center/viewAlert.x?alertId=24129
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d58.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d5a.shtml
http://www.securitytracker.com/id?1026110