CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0505

Memory leak in the Call Telephony Integration (CTI) Framework authentication for Cisco CallManager 3.0 and 3.1 before 3.1(3) allows remote attackers to cause a denial of service (crash and reload) via a series of authentication failures, e.g. via incorrect passwords.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.cisco.com/warp/public/707/callmanager-ctifw-leak-pub.shtml
http://www.iss.net/security_center/static/8655.php
http://www.securityfocus.com/bid/4370
http://www.cisco.com/warp/public/707/callmanager-ctifw-leak-pub.shtml
http://www.iss.net/security_center/static/8655.php
http://www.securityfocus.com/bid/4370

Products affected by CVE-2002-0505

Cisco » Call Manager » Version: 3.0

cpe:2.3:h:cisco:call_manager:3.0
Cisco » Call Manager » Version: 3.1

cpe:2.3:h:cisco:call_manager:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0505

Products

Pricing

Contact Us