CVE Vulnerabilities

CVE-2015-0613

Published: Apr 03, 2015 | Modified: Sep 29, 2015
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.1 HIGH
AV:N/AC:M/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (core dump and restart) via crafted SIP INVITE messages, aka Bug ID CSCul20444.

Affected Software

Name Vendor Start Version End Version
Unity_connection Cisco 8.5(1) (including) 8.5(1) (including)
Unity_connection Cisco 8.5(1)su1 (including) 8.5(1)su1 (including)
Unity_connection Cisco 8.5(1)su2 (including) 8.5(1)su2 (including)
Unity_connection Cisco 8.5(1)su3 (including) 8.5(1)su3 (including)
Unity_connection Cisco 8.5(1)su4 (including) 8.5(1)su4 (including)
Unity_connection Cisco 8.5(1)su5 (including) 8.5(1)su5 (including)
Unity_connection Cisco 8.5(1)su6 (including) 8.5(1)su6 (including)
Unity_connection Cisco 8.5_base (including) 8.5_base (including)
Unity_connection Cisco 8.6(1) (including) 8.6(1) (including)
Unity_connection Cisco 8.6(1a) (including) 8.6(1a) (including)
Unity_connection Cisco 8.6(2) (including) 8.6(2) (including)
Unity_connection Cisco 8.6(2a) (including) 8.6(2a) (including)
Unity_connection Cisco 8.6(2a)su1 (including) 8.6(2a)su1 (including)
Unity_connection Cisco 8.6(2a)su2 (including) 8.6(2a)su2 (including)
Unity_connection Cisco 8.6(2a)su3 (including) 8.6(2a)su3 (including)
Unity_connection Cisco 8.6_base (including) 8.6_base (including)
Unity_connection Cisco 9.0(1) (including) 9.0(1) (including)
Unity_connection Cisco 9.1(1) (including) 9.1(1) (including)
Unity_connection Cisco 9.1(2) (including) 9.1(2) (including)
Unity_connection Cisco 10.0.0 (including) 10.0.0 (including)
Unity_connection Cisco 10.0.5 (including) 10.0.5 (including)

References