CVE-2011-2563

EUVD-2011-2546
Unspecified vulnerability in the Service Advertisement Framework (SAF) in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 8.x before 8.5(1) and Cisco Intercompany Media Engine 8.x before 8.5(1) allows remote attackers to cause a denial of service (device reload) via crafted SAF packets, aka Bug ID CSCth26669.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
ciscounified_communications_manager
8.0
ciscounified_communications_manager
8.0\(1\)
ciscounified_communications_manager
8.0\(2c\)
ciscounified_communications_manager
8.0\(2c\)su1
ciscounified_communications_manager
8.0\(3\)
ciscounified_communications_manager
8.0\(3a\)
ciscounified_communications_manager
8.0\(3a\)su1
ciscounified_communications_manager
8.0\(3a\)su2
ciscounified_communications_manager
8.5
ciscointercompany_media_engine
8.0\(2\)
ciscointercompany_media_engine
8.0\(3\)
𝑥
= Vulnerable software versions
References
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f533.shtml
http://www.securitytracker.com/id?1025969
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f533.shtml
http://www.securitytracker.com/id?1025969