|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA18494] Cisco CallManager Connection Handling Denial of Service
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Thu Jan 19 2006 - 02:47:12 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Cisco CallManager Connection Handling Denial of Service
SECUNIA ADVISORY ID:
SA18494
VERIFY ADVISORY:
http://secunia.com/advisories/18494/
CRITICAL:
Less critical
IMPACT:
DoS
WHERE:
From local network
SOFTWARE:
Cisco CallManager 3.x
http://secunia.com/product/2805/
Cisco CallManager 4.x
http://secunia.com/product/5363/
DESCRIPTION:
Some vulnerabilities has been reported in Cisco CallManager, which
can be exploited by malicious people to cause a DoS (Denial of
Service).
1) TCP connections to port 2000 are not timed out aggressively
enough, which can be exploited via multiple open connections to
consume a large amount of memory and CPU resources.
2) An error in the processing of connections to ports 2001, 2002, and
7727 can be exploited to fill up the Windows message queue by
establishing multiple connections. This further leads to the Cisco
CallManager restarting after a 30 second timeout.
The following versions are affected:
* Cisco CallManager 3.2 and earlier
* Cisco CallManager 3.3, versions earlier than 3.3(5)SR1a
* Cisco CallManager 4.0, versions earlier than 4.0(2a)SR2c
* Cisco CallManager 4.1, versions earlier than 4.1(3)SR2
SOLUTION:
Fixes are available (see patch matrix):
http://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmdos.shtml#software
PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.
ORIGINAL ADVISORY:
http://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmdos.shtml
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]