- #CISCO CUCM 8.6 EOL ARCHIVE#
- #CISCO CUCM 8.6 EOL UPGRADE#
- #CISCO CUCM 8.6 EOL REGISTRATION#
- #CISCO CUCM 8.6 EOL CODE#
Customers running Cisco Unified Communications Manager Version 8.5 are encouraged to upgrade to 8.6 for complete coverage for all vulnerabilities listed in this advisory. *Note: Cisco Unified Communications Manager Version 8.5(1)su6 is targeted for release in mid-September 2013.
#CISCO CUCM 8.6 EOL REGISTRATION#
Improper Error Handling of Malformed Registration MessagesĬSCub85597: Memory Leak Observed During UDP FloodĬSCub35869: High CPU Utilization and Memory Leak During UDP Flood Cisco recommends upgrading to a release equal to or later than the release in the "Recommended Release" column of the following table:Ĭisco Unified Communication Manager VersionĬSCud54358: Insufficient Boundary Check of Input Buffer
#CISCO CUCM 8.6 EOL ARCHIVE#
When considering software upgrades, customers are advised to consult the Cisco Security Advisories, Responses, and Notices archive at and review subsequent advisories to determine exposure and a complete upgrade solution. This vulnerability affects Cisco UCM versions 7.1(x) through 9.1(1x). This vulnerability is documented in Cisco bug ID CSCud54358 ( registered customers only) and has been assigned the CVE ID CVE-2013-3462.
An exploit could allow the attacker toĬorrupt data, disrupt services, or run arbitrary commands. An attackerĬould exploit this vulnerability by overwriting an allocated memoryīuffer on an affected device. The vulnerability is due to insufficient bounds checking. Unified Communications Manager 7.1(x), 8.5(x), 8.6(x), 9.0(x) and 9.1(x) contain a vulnerability that couldĪllow an authenticated, remote attacker to cause a buffer overflow onĪn affected device. This vulnerability is documented in Cisco bug ID CSCub35869 ( registered customers only) and has been assigned the Common Vulnerabilities and Exposures CVE ID CVE-2013-3461. A sustained attack could allow the attacker to cause aĭoS condition on the affected device. Vulnerability by sending UDP packets at a high rate to port 5060 on anĪffected device. The vulnerability is due to insufficient rate limiting of traffic on the Session Initiation Protocol (SIP) port.
Vulnerability that could allow an unauthenticated, remote attacker toĬause a DoS condition on an affected device. This vulnerability is documented in Cisco bug ID CSCub85597 ( registered customers only) and has been assigned the CVE ID CVE-2013-3460.Ĭommunications Manager versions 8.5(x), 8.6(x) and 9.0(1) contain a
Packets at a high rate to certain ports on an affected device, resulting in a DoS condition on theĪffected device. An attacker could exploit this vulnerability by sending UDP The vulnerability is due to insufficient limiting of traffic on certain This vulnerability affectsĬommunications Manager 8.5(x), 8.6(x), and 9.0(x) contain a vulnerability thatĬould allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is documented inĬustomers only) and has been assigned the Common VulnerabilitiesĪnd Exposures (CVE) ID CVE-2013-3459. An attacker couldĮxploit this vulnerability by sending malformed registration messages, resulting in a DoS condition on anĪffected device. The vulnerability is due to improper error handling.
#CISCO CUCM 8.6 EOL CODE#
Cisco Unified Communications Manager contains multiple vulnerabilities that could allow an unauthenticated, remote attacker to cause a DoS condition or execute code remotely.Ĭommunications Manager 7.1(x) contains a vulnerability that could allowĪn unauthenticated, remote attacker to cause a DoS condition on anĪffected device. Phones, media processing devices, VoIP gateways, and multimediaĪpplications. The Cisco IP Telephony solution that extends enterprise telephonyįeatures and functions to packet telephony network devices, such as IP Cisco Unified Communications Manager is the call processing component of
0 kommentar(er)
