Описание
The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remote authenticated users to cause a denial of service (process crash) via a crafted SIP message that is not properly handled during processing of an XML document, aka Bug ID CSCtq76428.
The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remote authenticated users to cause a denial of service (process crash) via a crafted SIP message that is not properly handled during processing of an XML document, aka Bug ID CSCtq76428.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-3337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95245
- http://secunia.com/advisories/60088
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3337
- http://tools.cisco.com/security/center/viewAlert.x?alertId=35257
- http://www.securityfocus.com/bid/69177
- http://www.securitytracker.com/id/1030709
Связанные уязвимости
The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remote authenticated users to cause a denial of service (process crash) via a crafted SIP message that is not properly handled during processing of an XML document, aka Bug ID CSCtq76428.