Executive Summary

Informations
Name CVE-2009-0057 First vendor Publication 2009-01-22
Vendor Cve Last vendor Modification 2011-03-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:P)
Cvss Base Score 4.3 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager 5.x before 5.1(3e) and 6.x before 6.1(3) allows remote attackers to cause a denial of service (voice service outage) by sending malformed input over a TCP session in which the "client terminates prematurely."

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0057

CWE : Common Weakness Enumeration

idName
CWE-20Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application36

Open Source Vulnerability Database (OSVDB)

idDescription
52317Cisco Unified Communications Manager Certificate Authority Proxy Function (CA...

Internal Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/33379
CISCO http://www.cisco.com/en/US/products/products_security_advisory09186a0080a6192...
SECTRACK http://www.securitytracker.com/id?1021620
SECUNIA http://secunia.com/advisories/33588
VUPEN http://www.vupen.com/english/advisories/2009/0213
XF http://xforce.iss.net/xforce/xfdb/48139

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2013-05-10 23:41:33
  • Multiple Updates