PT-2012-1890 · Cisco · Cisco Business Edition 3000+3
Publicado
2012-03-01
·
Atualizado
2012-03-01
·
CVE-2011-4486
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Unified Communications Manager (CUCM) versions 6.x through 7.x before 7.1(5b)su5
Cisco Unified Communications Manager (CUCM) versions 8.0 through 8.0 before 8.0(3a)su3
Cisco Unified Communications Manager (CUCM) versions 8.5 through 8.6 before 8.6(2a)su1
Cisco Business Edition 3000 version before 8.6.3
Cisco Business Edition 5000 and 6000 versions before 8.6(2a)su1
Description
The issue allows remote attackers to cause a denial of service, resulting in a device reload, via a crafted SCCP registration.
Recommendations
For Cisco Unified Communications Manager (CUCM) versions 6.x through 7.x before 7.1(5b)su5, update to version 7.1(5b)su5 or later.
For Cisco Unified Communications Manager (CUCM) versions 8.0 through 8.0 before 8.0(3a)su3, update to version 8.0(3a)su3 or later.
For Cisco Unified Communications Manager (CUCM) versions 8.5 through 8.6 before 8.6(2a)su1, update to version 8.6(2a)su1 or later.
For Cisco Business Edition 3000 version before 8.6.3, update to version 8.6.3 or later.
For Cisco Business Edition 5000 and 6000 versions before 8.6(2a)su1, update to version 8.6(2a)su1 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Business Edition 3000
Cisco Business Edition 5000
Cisco Business Edition 6000
Cisco Unified Communications Manager