Cisco Unified Communications Manager sipSafeStrlen denial of service
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.5 | $0-$5k | 0.00 |
Summary
A vulnerability has been found in Cisco Unified Communications Manager and classified as problematic. Affected by this vulnerability is the function sipSafeStrlen. The manipulation leads to denial of service.
This vulnerability is known as CVE-2009-2051. There is no exploit available.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Details
A vulnerability, which was classified as critical, was found in Cisco Unified Communications Manager (Unified Communication Software) (affected version not known). Affected is the function sipSafeStrlen. The manipulation with an unknown input leads to a denial of service vulnerability. CWE is classifying the issue as CWE-404. The product does not release or incorrectly releases a resource before it is made available for re-use. This is going to have an impact on availability. CVE summarizes:
Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x before 6.1(4), and 7.x before 7.1(2) allow remote attackers to cause a denial of service (device reload or voice-services outage) via a malformed SIP INVITE message that triggers an improper call to the sipSafeStrlen function, aka Bug IDs CSCsz40392 and CSCsz43987.
The weakness was shared 08/26/2009 (Website). The advisory is available at cisco.com. This vulnerability is traded as CVE-2009-2051. The exploitability is told to be easy. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details are known, but there is no available exploit.
The vulnerability scanner Nessus provides a plugin with the ID 49648 (Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities (cisco-sa-20100922-sip)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family CISCO. The commercial vulnerability scanner Qualys is able to test this issue with plugin 43192 (Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities (cisco-sa-20100922-sip)).
A possible mitigation has been published even before and not after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (52814), Tenable (49648), SecurityFocus (BID 36152†), OSVDB (57453†) and Secunia (SA36499†). The entries VDB-49677, VDB-49676, VDB-49675 and VDB-49673 are related to this item. VulDB is the best source for vulnerability data and more expert information about this specific topic.
Product
Type
Vendor
Name
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.5VulDB Meta Temp Score: 7.5
VulDB Base Score: 7.5
VulDB Temp Score: 7.5
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Denial of serviceCWE: CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | unlock | unlock | unlock | unlock |
|---|---|---|---|---|
| Today | unlock | unlock | unlock | unlock |
Nessus ID: 49648
Nessus Name: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities (cisco-sa-20100922-sip)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Port: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
Timeline
06/12/2009 🔍08/18/2009 🔍
08/26/2009 🔍
08/26/2009 🔍
08/26/2009 🔍
08/27/2009 🔍
08/28/2009 🔍
09/01/2009 🔍
09/22/2010 🔍
03/18/2015 🔍
02/04/2025 🔍
Sources
Vendor: cisco.comAdvisory: cisco.com
Status: Not defined
CVE: CVE-2009-2051 (🔍)
GCVE (CVE): GCVE-0-2009-2051
GCVE (VulDB): GCVE-100-49674
X-Force: 52814
SecurityFocus: 36152 - Cisco Unified Communications Manager Multiple Denial of Service Vulnerabilities
Secunia: 36499
OSVDB: 57453 - Cisco Unified Communications Manager SIP Trunk Malformed Packet Handling Remote DoS
SecurityTracker: 1022775
Vulnerability Center: 23341 - [cisco-sa-20090826-cucm] Cisco IOS and CUCM Remote DoS Vulnerability via a Malformed SIP INVITE, Medium
See also: 🔍
Entry
Created: 03/18/2015 03:15 PMUpdated: 02/04/2025 10:04 PM
Changes: 03/18/2015 03:15 PM (61), 02/13/2017 10:34 AM (8), 08/20/2021 02:43 PM (3), 08/20/2021 02:46 PM (1), 07/27/2024 04:00 PM (16), 02/04/2025 10:04 PM (1)
Complete: 🔍
Cache ID: 18:A12:40
No comments yet. Languages: en.
Please log in to comment.