Back to search
CVE-2012-3949
Published: Sep 27, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
The SIP implementation in Cisco Unified Communications Manager (CUCM) 6.x and 7.x before 7.1(5b)su5, 8.x before 8.5(1)su4, and 8.6 before 8.6(2a)su1; Cisco IOS 12.2 through 12.4 and 15.0 through 15.2; and Cisco IOS XE 3.3.xSG before 3.3.1SG, 3.4.xS, and 3.5.xS allows remote attackers to cause a denial of service (service crash or device reload) via a crafted SIP message containing an SDP session description, aka Bug IDs CSCtw66721, CSCtj33003, and CSCtw84664.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20120926 Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability
vendor-advisory
x_refsource_CISCO
50774
third-party-advisory
x_refsource_SECUNIA
85816
vdb-entry
x_refsource_OSVDB
20120926 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability
vendor-advisory
x_refsource_CISCO
55697
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now