The SIPStationInit implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.1SU before 6.1(5)SU1, 7.0SU before 7.0(2a)SU3, 7.1SU before 7.1(3b)SU2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SIP message, aka Bug ID CSCtd17310.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Unified_communications_manager | Cisco | * | 6.1(5) (including) |
| Unified_communications_manager | Cisco | 6.1(1) (including) | 6.1(1) (including) |
| Unified_communications_manager | Cisco | 6.1(1a) (including) | 6.1(1a) (including) |
| Unified_communications_manager | Cisco | 6.1(1b) (including) | 6.1(1b) (including) |
| Unified_communications_manager | Cisco | 6.1(2) (including) | 6.1(2) (including) |
| Unified_communications_manager | Cisco | 6.1(2)su1 (including) | 6.1(2)su1 (including) |
| Unified_communications_manager | Cisco | 6.1(2)su1a (including) | 6.1(2)su1a (including) |
| Unified_communications_manager | Cisco | 6.1(3) (including) | 6.1(3) (including) |
| Unified_communications_manager | Cisco | 6.1(3a) (including) | 6.1(3a) (including) |
| Unified_communications_manager | Cisco | 6.1(3b) (including) | 6.1(3b) (including) |
| Unified_communications_manager | Cisco | 6.1(3b)su1 (including) | 6.1(3b)su1 (including) |
| Unified_communications_manager | Cisco | 6.1(4) (including) | 6.1(4) (including) |
| Unified_communications_manager | Cisco | 6.1(4)su1 (including) | 6.1(4)su1 (including) |
| Unified_communications_manager | Cisco | 6.1(4a) (including) | 6.1(4a) (including) |
| Unified_communications_manager | Cisco | 6.1(4a)su2 (including) | 6.1(4a)su2 (including) |