CVE-2013-3453

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager IM and Presence Service versions prior to 8.6(5)SU1 Cisco Unified Communications Manager IM and Presence Service versions 9.x prior to 9.1(2) Cisco Unified Presence (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service by consuming memory and CPU resources. This can be achieved by making many TCP connections to certain ports. The estimated number of potentially affected devices worldwide is not available. Details about real-world incidents where this issue was exploited are not provided.

Recommendations For Cisco Unified Communications Manager IM and Presence Service versions prior to 8.6(5)SU1, update to version 8.6(5)SU1 or later. For Cisco Unified Communications Manager IM and Presence Service versions 9.x prior to 9.1(2), update to version 9.1(2) or later. For Cisco Unified Presence, at the moment, there is no information about a newer version that contains a fix for this vulnerability.