CVE-2010-0587

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager versions 4.x through 4.3(2)SR2 Cisco Unified Communications Manager versions 6.x through 6.1(5) Cisco Unified Communications Manager versions 7.x through 7.1(3a)su1 Cisco Unified Communications Manager versions 8.x through 8.0(1)

Description The issue allows remote attackers to cause a denial of service, resulting in process failure. This is achieved by sending a malformed SCCP StationCapabilitiesRes message that contains an invalid MaxCap field.

Recommendations For versions 4.x through 4.3(2)SR2, update to version 4.3(2)SR2 or later. For versions 6.x through 6.1(5), update to version 6.1(5) or later. For versions 7.x through 7.1(3a)su1, update to version 7.1(3a)su1 or later. For versions 8.x through 8.0(1), update to version 8.0(1) or later.