CVE-2012-3949 in Unified Communications Managerinfo

Summary

The SIP implementation in Cisco Unified Communications Manager (CUCM) 6.x and 7.x before 7.1(5b)su5, 8.x before 8.5(1)su4, and 8.6 before 8.6(2a)su1; Cisco IOS 12.2 through 12.4 and 15.0 through 15.2; and Cisco IOS XE 3.3.xSG before 3.3.1SG, 3.4.xS, and 3.5.xS allows remote attackers to cause a denial of service (service crash or device reload) via a crafted SIP message containing an SDP session description, aka Bug IDs CSCtw66721, CSCtj33003, and CSCtw84664.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

07/10/2012

Disclosure

09/26/2012

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

7.5

EPSS

0.00932

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3949
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3949
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3949/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!