Cisco Unified Communications Manager Denial of Service Vulnerabilities

May 20, 2008

May 16, 2008

If you look below this notice, you will see what I published yesterday on Security-Privacy, so what comes from Cisco should be no surprise. Cisco Unified Communications Manager, formerly Cisco CallManager, contains multiple denial of service (DoS) vulnerabilities that may cause an interruption in voice services, if exploited. These vulnerabilities were discovered internally by Cisco. The following Cisco Unified Communications Manager services are affected:

Certificate Trust List (CTL) Provider
Certificate Authority Proxy Function (CAPF)
Session Initiation Protocol (SIP)
Simple Network Management Protocol (SNMP) Trap

For those of you unfamiliar with certificates, here’s a quick tutorial.

Cisco also has unique names for some of their certificate functions. For more on this alert go here:
http://www.cisco.com/warp/public/707/cisco-sa-20080514-cucmdos.shtml

See this page in Technorati Technorati book mark in del.icio.us Del.icio.us Slashdot.com Slashdot Submit to Digg.com Digg BoingBoing Bookmark in Furl Furl Bookmark in Spurl Spurl

Related Entries

Listed below are links to sites that reference Cisco Unified Communications Manager Denial of Service Vulnerabilities:

Trackback Pings
TrackBack URL:
http://blog.tmcnet.com/mt3/t.fcgi/36090

Comments to Cisco Unified Communications Manager Denial of Service Vulnerabilities

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

CrossTalk

Cisco Unified Communications Manager Denial of Service Vulnerabilities

Trackback Pings

Comments to Cisco Unified Communications Manager Denial of Service Vulnerabilities