CVE-2015-0613

EUVD-2015-0626
The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (core dump and restart) via crafted SIP INVITE messages, aka Bug ID CSCul20444.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.1 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
ciscounity_connection
8.5\(1\)
ciscounity_connection
8.5\(1\)su1
ciscounity_connection
8.5\(1\)su2
ciscounity_connection
8.5\(1\)su3
ciscounity_connection
8.5\(1\)su4
ciscounity_connection
8.5\(1\)su5
ciscounity_connection
8.5\(1\)su6
ciscounity_connection
8.5_base:_base
ciscounity_connection
8.6\(1\)
ciscounity_connection
8.6\(1a\)
ciscounity_connection
8.6\(2\)
ciscounity_connection
8.6\(2a\)
ciscounity_connection
8.6\(2a\)su1
ciscounity_connection
8.6\(2a\)su2
ciscounity_connection
8.6\(2a\)su3
ciscounity_connection
8.6_base:_base
ciscounity_connection
9.0\(1\)
ciscounity_connection
9.1\(1\)
ciscounity_connection
9.1\(2\)
ciscounity_connection
10.0.0
ciscounity_connection
10.0.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150401-cuc
http://www.securitytracker.com/id/1032010
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150401-cuc
http://www.securitytracker.com/id/1032010