Denial of Service Vulnerability in Cisco Unified Communications Manager (CUCM) 7.x and 8.x

Denial of Service Vulnerability in Cisco Unified Communications Manager (CUCM) 7.x and 8.x

CVE-2011-2561 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

The SIP process in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.x before 7.1(5b)su4 and 8.x before 8.0(1) does not properly handle SDP data within a SIP call in certain situations related to use of the g729ar8 codec for a Media Termination Point (MTP), which allows remote attackers to cause a denial of service (service outage) via a crafted call, aka Bug ID CSCtc61990.

Learn more about our Cis Benchmark Audit For Cisco.