CVE-2011-2560

The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x does not properly handle idle TCP connections, which allows remote attackers to cause a denial of service (memory consumption and restart) by making many connections, aka Bug ID CSCtf97162.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
ciscounified_communications_manager
4.1\(3\)
ciscounified_communications_manager
4.1\(3\)sr1
ciscounified_communications_manager
4.1\(3\)sr2
ciscounified_communications_manager
4.1\(3\)sr3
ciscounified_communications_manager
4.1\(3\)sr4
ciscounified_communications_manager
4.2
ciscounified_communications_manager
4.2.1
ciscounified_communications_manager
4.2.2
ciscounified_communications_manager
4.2.3
ciscounified_communications_manager
4.2.3sr1:sr1
ciscounified_communications_manager
4.2.3sr2:sr2
ciscounified_communications_manager
4.2.3sr2b:sr2b
ciscounified_communications_manager
4.3
ciscounified_communications_manager
4.3\(1\)
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml