This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:cisco:unified_communications_manager:6.1:
Detail
VendorCiscoFirst view 2008-02-14
ProductUnified Communications ManagerLast view 2010-03-05
Version6.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:cisco:unified_communications_manager

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.82010-03-05CVE-2010-0592NetworkLowNone Requ...
7.82010-03-05CVE-2010-0591NetworkLowNone Requ...
7.82010-03-05CVE-2010-0588NetworkLowNone Requ...
7.82010-03-05CVE-2010-0587NetworkLowNone Requ...
7.82009-08-27CVE-2009-2054NetworkLowNone Requ...
Hide | Show 16 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.82009-08-27CVE-2009-2053NetworkLowNone Requ...
7.82009-08-27CVE-2009-2052NetworkLowNone Requ...
7.82009-08-27CVE-2009-2051NetworkLowNone Requ...
7.82009-08-27CVE-2009-2050NetworkLowNone Requ...
92009-03-12CVE-2009-0632NetworkLowRequires ...
4.32009-01-22CVE-2009-0057NetworkMediumNone Requ...
7.12008-09-26CVE-2008-3801NetworkMediumNone Requ...
7.12008-09-26CVE-2008-3800NetworkMediumNone Requ...
52008-06-26CVE-2008-2730NetworkLowNone Requ...
7.82008-05-16CVE-2008-1747NetworkLowNone Requ...
7.82008-05-16CVE-2008-1746NetworkLowNone Requ...
7.82008-05-16CVE-2008-1745NetworkLowNone Requ...
7.82008-05-16CVE-2008-1744NetworkLowNone Requ...
7.82008-05-16CVE-2008-1742NetworkLowNone Requ...
102008-04-04CVE-2008-1154NetworkLowNone Requ...
6.52008-02-14CVE-2008-0026NetworkLowRequires ...

CWE : Common Weakness Enumeration

%idName
50% (5)CWE-20Improper Input Validation
20% (2)CWE-287Improper Authentication
10% (1)CWE-399Resource Management Errors
10% (1)CWE-255Credentials Management
10% (1)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-2Inducing Account Lockout
CAPEC-82Violating Implicit Assumptions Regarding XML Content (aka XML Denial of Servi...
CAPEC-99XML Parser Attack
CAPEC-119Resource Depletion
CAPEC-121Locate and Exploit Test APIs
Hide | Show 7 More...
idName
CAPEC-125Resource Depletion through Flooding
CAPEC-130Resource Depletion through Allocation
CAPEC-147XML Ping of Death
CAPEC-197XEE (XML Entity Expansion)
CAPEC-227Denial of Service through Resource Depletion
CAPEC-228Resource Depletion through DTD Injection in a SOAP Message
CAPEC-229XML Attribute Blowup

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:6086Cisco IOS Session Initiation Protocol Denial of Service Vulnerability
oval:org.mitre.oval:def:6047Cisco IOS Session Initiation Protocol Denial of Service Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
62761Cisco Unified Communications Manager CTI Manager Message Handling Remote DoS
62760Cisco Unified Communications Manager Malformed SIP Message Handling Remote Do...
62758Cisco Unified Communications Manager Malformed SCCP Message Handling Remote D...
62757Cisco Unified Communications Manager Malformed SCCP Message Handling Remote D...
57456Cisco Unified Communications Manager SIP Packet Processing Unspecified Remote...
Hide | Show 16 More...
idDescription
57455Cisco Unified Communications Manager SCCP Packet Handling Unspecified Remote DoS
57454Cisco Unified Communications Manager Embedded Firewall Network Connection Sat...
57453Cisco Unified Communications Manager SIP Trunk Malformed Packet Handling Remo...
57452Cisco Unified Communications Manager Unspecified SIP Packet Handling Remote DoS
52589Cisco Unified Communications Manager IP Phone PAB Disclosure Privilege Escala...
52317Cisco Unified Communications Manager Certificate Authority Proxy Function (CA...
48715Cisco IOS / CUCM SIP Packet Handling Unspecified Remote DoS (3801)
48714Cisco IOS / CUCM SIP Packet Handling Unspecified Remote DoS (3800)
46815Cisco Unified Communications Manager (CUCM) RIS Data Collector Authentication...
45209Cisco Unified Communications Manager Certificate Trust List (CTL) Provider Se...
45207Cisco Unified Communications Manager Certificate Authority Proxy Function (CA...
45206Cisco Unified Communications Manager SIP JOIN Message Handling Remote DoS
45205Cisco Unified Communications Manager SNMP Trap Agent Service Malformed UDP Pa...
45204Cisco Unified Communications Manager SIP INVITE Handling Remote DoS (CSCsk46944)
44032Cisco Unified Communications Disaster Recovery Framework (DRF) Arbitrary Remo...
41561Cisco Unified Callmanager / Communications Manager Multiple Page key Paramete...

OpenVAS Exploits

idDescription
2009-03-13Name : Ubuntu USN-731-1 (apache2)
File : nvt/ubuntu_731_1.nasl
2009-03-13Name : Ubuntu USN-732-1 (dash)
File : nvt/ubuntu_732_1.nasl

Nessus® Vulnerability Scanner

idDescription
2010-09-22Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20100922-siphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-siphttp.nasl - Type : ACT_GATHER_INFO