CVE-2015-0614

The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (core dump and restart) via crafted SIP INVITE messages, aka Bug ID CSCul26267.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.1 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
VendorProductVersion
ciscounity_connection
8.5\(1\)
ciscounity_connection
8.5\(1\)su1
ciscounity_connection
8.5\(1\)su2
ciscounity_connection
8.5\(1\)su3
ciscounity_connection
8.5\(1\)su4
ciscounity_connection
8.5\(1\)su5
ciscounity_connection
8.5\(1\)su6
ciscounity_connection
8.5_base:_base
ciscounity_connection
8.6\(1\)
ciscounity_connection
8.6\(1a\)
ciscounity_connection
8.6\(2\)
ciscounity_connection
8.6\(2a\)
ciscounity_connection
8.6\(2a\)su1
ciscounity_connection
8.6\(2a\)su2
ciscounity_connection
8.6\(2a\)su3
ciscounity_connection
8.6_base:_base
ciscounity_connection
9.0\(1\)
ciscounity_connection
9.1\(1\)
ciscounity_connection
9.1\(2\)
ciscounity_connection
10.0.0
ciscounity_connection
10.0.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150401-cuc
http://www.securitytracker.com/id/1032010
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150401-cuc
http://www.securitytracker.com/id/1032010