CVE-2010-0591

Published Mar 5, 2010

Last updated 15 years ago

CVSS info 7.8

Overview

Description: Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5), 7.x before 7.1(3b)SU2, and 8.x before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SIP REG message, related to an overflow of the Telephone-URL field, aka Bug ID CSCtc62362.
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "819AE879-5BF9-494E-8905-1E1E867EB5A9"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.0\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2DF1139-A161-48DD-9929-F6939D626461"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.0\\(1a\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF99088E-1330-4E15-8BD3-2A5172FBA460"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6BC6EF34-D23D-45CA-A907-A47993CC061E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6CC94003-72B6-45C3-A07E-0A08F1562B6A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(1a\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "958A2707-0F1A-4719-BB9F-DC9ED129105A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(1b\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48A8EE9A-458D-4619-B04D-F01A9934DC11"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "597D9674-F44D-4A31-A2F2-2790ED698A91"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(2\\)su1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C2B7439-8547-41A6-AE6C-6ABCD167890E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(2\\)su1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF3EB2A0-6907-4260-BBF1-D8E6E40827FD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE122F76-ECDB-4446-825C-EF02257D8C08"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1\\(4\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE2597F4-9B5B-4E2E-8DA5-40D769CC57B3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:6.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42F3870B-5DE9-4E3E-BEA7-863916DD45DB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F2564A8-5805-46E0-B6EC-F4967D67C566"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:7.0\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0907FAF-8334-42C1-B35A-EC6ED89AC110"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:7.0\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FCB47159-FA07-4317-B562-D7AB7C49E8F6"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77979322-F060-4DD4-A6F2-B1157664C0FA"
          },
          {
            "criteria": "cpe:2.3:a:cisco:unified_communications_manager:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "248E4608-B870-4913-8048-3771685CBD77"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References