CVSS: 7.8EPSS: 0%CPEs: 115EXPL: 0CVE-2013-3453
https://notcve.org/view.php?id=CVE-2013-3453
22 Aug 2013 — Memory leak in Cisco Unified Communications Manager IM and Presence Service before 8.6(5)SU1 and 9.x before 9.1(2), and Cisco Unified Presence, allows remote attackers to cause a denial of service (memory and CPU consumption) by making many TCP connections to port (1) 5060 or (2) 5061, aka Bug ID CSCud84959. Fuga de memoria en Cisco Unified Communications Manager IM y Presence Service anterior a 8.6(5)SU1 y 9.x anterior a 9.1(2), y Cisco Unified Presence, permite a atacantes remotos provocar una denegación ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130821-cup • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2011-2560
https://notcve.org/view.php?id=CVE-2011-2560
29 Aug 2011 — The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x does not properly handle idle TCP connections, which allows remote attackers to cause a denial of service (memory consumption and restart) by making many connections, aka Bug ID CSCtf97162. El Packet Capture Service en Cisco Unified Communications Manager (también conocido como CUCM o CallManager) v4.x, no maneja adecuadamente las conexiones TCP inactivas, lo que permite a atacantes remotos provocar una d... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2010-2838
https://notcve.org/view.php?id=CVE-2010-2838
26 Aug 2010 — The SendCombinedStatusInfo implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.0SU before 7.0(2a)SU3, 7.1 before 7.1(5), and 8.0 before 8.0(3) allows remote attackers to cause a denial of service (process failure) via a malformed SIP REGISTER message, aka Bug ID CSCtf66305. La implementación SendCombinedStatusInfo en Cisco Unified Communications Manager (también conocido como CUCM, antes CallManager) v7.0SU anterior a v7.0(2a)SU3, v7.1 anterior v7.1(5), y v8.0 anterior ... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml •
CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0CVE-2010-2837
https://notcve.org/view.php?id=CVE-2010-2837
26 Aug 2010 — The SIPStationInit implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.1SU before 6.1(5)SU1, 7.0SU before 7.0(2a)SU3, 7.1SU before 7.1(3b)SU2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SIP message, aka Bug ID CSCtd17310. La implementación SIPStationInit en Cisco Unified Communications Manager (también conocida como CUCM, anteriormente CallManager) v6.1SU anterior a v6.1(5)SU1, v7.0SU a... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml •
CVSS: 7.8EPSS: 0%CPEs: 58EXPL: 0CVE-2010-0592
https://notcve.org/view.php?id=CVE-2010-0592
05 Mar 2010 — The CTI Manager service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x before 4.3(2)sr1a, 6.x before 6.1(3), 7.0x before 7.0(2), 7.1x before 7.1(2), and 8.x before 8.0(1) allows remote attackers to cause a denial of service (service failure) via a malformed message, aka Bug ID CSCsu31800. CTI Manager service en Cisco Unified Communications Manager (tambien conocido como CUCM, formerly CallManager) v4.x anteriores a v4.3(2)sr1a, v6.x anteriores a v6.1(3), v7.0x anteriores a v7.0... • http://securitytracker.com/id?1023670 •
CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2010-0587
https://notcve.org/view.php?id=CVE-2010-0587
05 Mar 2010 — Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x before 4.3(2)SR2, 6.x before 6.1(5), 7.x before 7.1(3a)su1, and 8.x before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SCCP StationCapabilitiesRes message with an invalid MaxCap field, aka Bug ID CSCtc38985. Cisco Unified Communications Manager (tambien conocido como CUCM, anteriormente CallManager) v4.x anteriores a v4.3(2)SR2, v6.x anteriores a v6.1(5), v7.x anteriores a v7.1(3a)su1,... • http://securitytracker.com/id?1023670 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2009-2050
https://notcve.org/view.php?id=CVE-2009-2050
27 Aug 2009 — Cisco Unified Communications Manager (aka CUCM, formerly CallManager) before 6.1(1) allows remote attackers to cause a denial of service (voice-services outage) via a malformed header in a SIP message, aka Bug ID CSCsi46466. Cisco Unified Communications Manager (también conocido como CUCM, formalmente CallManager) anteriores a v6.1(1) permite a los atacantes remotos causar una denegación de servicio (parada servicio de voz) a través de cabeceras malformadas en un mensaje SIP, también conocido como Bug ID CS... • http://osvdb.org/57452 •
CVSS: 7.8EPSS: 1%CPEs: 4EXPL: 0CVE-2009-2054
https://notcve.org/view.php?id=CVE-2009-2054
27 Aug 2009 — Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x before 6.1(4), 7.0 before 7.0(2a)su1, and 7.1 before 7.1(2a)su1 allows remote attackers to cause a denial of service (file-descriptor exhaustion and SIP outage) via a flood of TCP packets, aka Bug ID CSCsx23689. Cisco Unified Communications Manager (también conocido como CUCM, formalmente CallManager) v4.x, v5.x anteriores a v5.1(3g), v6.x anteriores a v6.1(4), v7.0 anteriores a v7.0(2a)su1, y v7.1 anteriores ... • http://osvdb.org/57456 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 9.8EPSS: 0%CPEs: 30EXPL: 0CVE-2009-0632
https://notcve.org/view.php?id=CVE-2009-0632
12 Mar 2009 — The IP Phone Personal Address Book (PAB) Synchronizer feature in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.1, 4.2 before 4.2(3)SR4b, 4.3 before 4.3(2)SR1b, 5.x before 5.1(3e), 6.x before 6.1(3), and 7.0 before 7.0(2) sends privileged directory-service account credentials to the client in cleartext, which allows remote attackers to modify the CUCM configuration and perform other privileged actions by intercepting these credentials, and then using them in requests unrelated to th... • http://osvdb.org/52589 • CWE-255: Credentials Management Errors •
CVSS: 7.5EPSS: 7%CPEs: 10EXPL: 0CVE-2008-3801
https://notcve.org/view.php?id=CVE-2008-3801
26 Sep 2008 — Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4 and Unified Communications Manager 4.1 through 6.1, when VoIP is configured, allows remote attackers to cause a denial of service (device or process reload) via unspecified valid SIP messages, aka Cisco Bug ID CSCsm46064, a different vulnerability than CVE-2008-3800 and CVE-2008-3802. Vulnerabilidad no especificada en la implementación de la Session Initiation Protocol en Cisco IOS v12.2 a la v12... • http://secunia.com/advisories/31990 •