Page 2 of 12 results (0.009 seconds)

CVSS: 7.8EPSS: 2%CPEs: 2EXPL: 0

The Presence Engine (PE) service in Cisco Unified Presence before 6.0(1) allows remote attackers to cause a denial of service (core dump and service interruption) via an unspecified "stress test," aka Bug ID CSCsh20972. El servicio Presence Engine (PE) de Cisco Unified Presence versiones anteriores a 6.0(1) permite a atacantes remotos provocar una denegación de servicio (core dump e interrupción del servicio) a través de "pruebas de estrés" sin especificar, también conocido como Bug ID CSCsh20972. • http://secunia.com/advisories/30240 http://securitytracker.com/id?1020023 http://www.cisco.com/en/US/products/products_security_advisory09186a0080995682.shtml http://www.securityfocus.com/bid/29220 http://www.vupen.com/english/advisories/2008/1534 https://exchange.xforce.ibmcloud.com/vulnerabilities/42412 • CWE-20: Improper Input Validation •

CVSS: 10.0EPSS: 11%CPEs: 8EXPL: 0

The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unified Communications Manager (CUCM) 5.x and 6.x, Unified Presence 1.x and 6.x, Emergency Responder 2.x, and Mobility Manager 2.x, does not require authentication for requests received from the network, which allows remote attackers to execute arbitrary code via unspecified vectors. El Disaster Recovery Framework (DRF) Master Server en productos Cisco Unified Communications, incluyendo Unified Communications Manager (CUCM) 5.x y 6.x, Unified Presence 1.x y 6.x, Emergency Responder 2.x, y Mobility Manager 2.x, no requiere autenticación para las peticiones recibidas desde la red, lo que permite a atacantes remotos ejecutar código arbitrario a través de vectores no especificados. • http://secunia.com/advisories/29670 http://securitytracker.com/id?1019768 http://www.cisco.com/en/US/products/products_security_advisory09186a008096fd9a.shtml http://www.securityfocus.com/bid/28591 http://www.vupen.com/english/advisories/2008/1093 https://exchange.xforce.ibmcloud.com/vulnerabilities/41632 • CWE-287: Improper Authentication •

CVSS: 7.8EPSS: 3%CPEs: 7EXPL: 0

Unspecified vulnerability in Cisco Unified Communications Manager (CUCM, formerly CallManager) and Unified Presence Server (CUPS) allows remote attackers to cause a denial of service (loss of cluster services) via unspecified vectors, aka (1) CSCsj09859 and (2) CSCsj19985. Vulnerabilidad no especificada en Cisco Unified Communications Manager (CUCM, antiguamente CallManager) y Unified Presence Server (CUPS) permite a atacantes remotos provocar una denegación de servicio (pérdida de servicios de clúster) mediante vectores no especificados, también conocido como (1) CSCsj09859 y (2) CSCsj19985. • http://secunia.com/advisories/26039 http://securitytracker.com/id?1018368 http://www.cisco.com/warp/public/707/cisco-sa-20070711-voip.shtml http://www.osvdb.org/36123 http://www.securityfocus.com/bid/24867 http://www.vupen.com/english/advisories/2007/2511 https://exchange.xforce.ibmcloud.com/vulnerabilities/35341 •

CVSS: 5.0EPSS: 1%CPEs: 7EXPL: 0

Cisco Unified Communications Manager (CUCM, formerly CallManager) and Unified Presence Server (CUPS) allow remote attackers to obtain sensitive information via unspecified vectors that reveal the SNMP community strings and configuration settings, aka (1) CSCsj20668 and (2) CSCsj25962. Cisco Unified Communications Manager (CUCM, antiguamente CallManager) y Unified Presence Server (CUPS) permiten a atacantes remotos obtener información sensible a través de vectores sin especificar que revelan las cadenas de comunidad SNMP y las opciones de configuración, también conocido como (1) CSCsj20668 y (2) CSCsj25962. • http://osvdb.org/36124 http://secunia.com/advisories/26039 http://securitytracker.com/id?1018368 http://www.cisco.com/warp/public/707/cisco-sa-20070711-voip.shtml http://www.securityfocus.com/bid/24867 http://www.vupen.com/english/advisories/2007/2511 https://exchange.xforce.ibmcloud.com/vulnerabilities/35344 •

CVSS: 7.8EPSS: 2%CPEs: 9EXPL: 0

Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allow remote attackers to cause a denial of service (loss of voice services) via a flood of ICMP echo requests, aka bug ID CSCsf12698. Cisco Unified CallManager (CUCM) 5.0 anterior a 5.0(4a)SU1 y Cisco Unified Presence Server (CUPS) 1.0 anterior a 1.0(3) permite a atacantes remotos provocar una denegación de servicio (pérdida de servicios de voz) mediante una inundación de peticiones de eco ICMP, también conocido como bug ID CSCsf12698. • http://secunia.com/advisories/24690 http://securitytracker.com/id?1017826 http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml http://www.securityfocus.com/bid/23181 http://www.vupen.com/english/advisories/2007/1144 https://exchange.xforce.ibmcloud.com/vulnerabilities/33299 •