Vulnerability Details CVE-2011-2560
The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x does not properly handle idle TCP connections, which allows remote attackers to cause a denial of service (memory consumption and restart) by making many connections, aka Bug ID CSCtf97162.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.2%
CVSS Severity
CVSS v2 Score 7.8
References
Products affected by CVE-2011-2560
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr1
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr2
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr3
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr4
-
cpe:2.3:a:cisco:unified_communications_manager:4.2
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.1
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.2
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr1
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2b
-
cpe:2.3:a:cisco:unified_communications_manager:4.3
-
cpe:2.3:a:cisco:unified_communications_manager:4.3(1)