CVE-2013-1220

The CallServer component in Cisco Unified Customer Voice Portal (CVP) Software before 9.0.1 ES 11 allows remote attackers to cause a denial of service (call-acceptance outage) via malformed SIP INVITE messages, aka Bug ID CSCua65148.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
VendorProductVersion
ciscounified_customer_voice_portal
𝑥
≤ 9.0\(1\)
ciscounified_customer_voice_portal
3.0:sr1
ciscounified_customer_voice_portal
3.0:sr2
ciscounified_customer_voice_portal
3.6\(10\):es01
ciscounified_customer_voice_portal
4.0
ciscounified_customer_voice_portal
4.0\(2\)
ciscounified_customer_voice_portal
4.0\(2\):sr1
ciscounified_customer_voice_portal
4.1
ciscounified_customer_voice_portal
7.0
ciscounified_customer_voice_portal
7.0\(2\)
ciscounified_customer_voice_portal
8.0\(1\)
ciscounified_customer_voice_portal
8.5\(1\)
ciscounified_customer_voice_portal
9.0
𝑥
= Vulnerable software versions
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130508-cvp
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130508-cvp