CVE Vulnerability

CVE-2008-1746

The SNMP Trap Agent service in Cisco Unified Communications Manager (CUCM) 4.1 before 4.1(3)SR6, 4.2 before 4.2(3)SR3, 4.3 before 4.3(2), 5.x before 5.1(3), and 6.x before 6.1(1) allows remote attackers to cause a denial of service (core dump and service restart) via a series of malformed UDP packets, as demonstrated by the IP Stack Integrity Checker (ISIC), aka Bug ID CSCsj24113.

7.8 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 6.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.cisco.com/en/US/products/products_security_advisory09186a0080995688.shtml
http://www.securityfocus.com/bid/29221
http://securitytracker.com/id?1020022
http://secunia.com/advisories/30238
http://www.vupen.com/english/advisories/2008/1533
https://exchange.xforce.ibmcloud.com/vulnerabilities/42420
Configurations

Configuration 1

cpe:2.3:a:cisco:unified_communications_manager:4.1:(3)sr5b:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:(1):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.1:(1a):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:(2):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.1:(3)sr5:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.1:(3)sr5c:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:(2a):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.1:(3)sr.5:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.3:4.3(1)sr.1:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.2:4.2_(3)sr2b:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.2:4.2(3)sr.2:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.2:4.2_(3)sr3:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:4.1:(3)sr4:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:(2b):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*
Information

Published : 2008-05-16 12:54

Updated : 2017-08-08 01:30

NVD link : CVE-2008-1746

Mitre link : CVE-2008-1746

Products Affected
No products.
CWE
CWE-20