Vulnerability Details CVE-2011-1604
Memory leak in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5)su3, 7.x before 7.1(5b)su3, 8.0 before 8.0(3a)su2, and 8.5 before 8.5(1) allows remote attackers to cause a denial of service (memory consumption and process failure) via a malformed SIP message, aka Bug ID CSCti42904.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 83.1%
CVSS Severity
CVSS v2 Score 7.1
References
- http://archives.neohapsis.com/archives/fulldisclosure/2011-05/0051.html
- http://secunia.com/advisories/44331
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b79904.shtml
- http://www.securityfocus.com/bid/47609
- http://www.securitytracker.com/id?1025449
- http://www.vupen.com/english/advisories/2011/1122
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67122
- http://archives.neohapsis.com/archives/fulldisclosure/2011-05/0051.html
- http://secunia.com/advisories/44331
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b79904.shtml
- http://www.securityfocus.com/bid/47609
- http://www.securitytracker.com/id?1025449
- http://www.vupen.com/english/advisories/2011/1122
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67122
Products affected by CVE-2011-1604
-
cpe:2.3:a:cisco:unified_communications_manager:6.0
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(1)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(1a)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(1b)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(2)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(2)su1
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(2)su1a
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(3)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(3a)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(3b)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(3b)su1
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(4)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(4)su1
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(4a)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(4a)su2
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(5)
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(5)su1
-
cpe:2.3:a:cisco:unified_communications_manager:6.1(5)su2
-
cpe:2.3:a:cisco:unified_communications_manager:7.0(1)su1
-
cpe:2.3:a:cisco:unified_communications_manager:7.0(1)su1a
-
cpe:2.3:a:cisco:unified_communications_manager:7.0(2)
-
cpe:2.3:a:cisco:unified_communications_manager:7.0(2a)
-
cpe:2.3:a:cisco:unified_communications_manager:7.0(2a)su1
-
cpe:2.3:a:cisco:unified_communications_manager:7.0(2a)su2
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(2a)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(2a)su1
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(2b)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(2b)su1
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(3)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(3a)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(3a)su1
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(3a)su1a
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(3b)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(3b)su1
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(3b)su2
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(5)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(5)su1
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(5)su1a
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(5a)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(5b)
-
cpe:2.3:a:cisco:unified_communications_manager:7.1(5b)su2
-
cpe:2.3:a:cisco:unified_communications_manager:8.0(2c)
-
cpe:2.3:a:cisco:unified_communications_manager:8.0(2c)su1
-
cpe:2.3:a:cisco:unified_communications_manager:8.0(3)
-
cpe:2.3:a:cisco:unified_communications_manager:8.0(3a)
-
cpe:2.3:a:cisco:unified_communications_manager:8.0(3a)su1
-
cpe:2.3:a:cisco:unified_communications_manager:8.5