Memory Leak in Call Telephony Integration Framework for Cisco CallManager Products
CVE-2002-0505

Currently unrated

Key Information:

Vendor: Cisco
Status: Call Manager
Vendor: CVE Published:; 12 August 2002

What is CVE-2002-0505?

A memory leak issue in the Call Telephony Integration (CTI) Framework authentication process may allow remote attackers to exploit authentication failures. This exploit could lead to a denial of service by causing the Cisco CallManager to crash and subsequently reload, impacting service availability for legitimate users.

References

http://www.cisco.com/warp/public/707/callmanager-ctifw-le...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/4370

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/8655.php

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2002
Vulnerability Reserved
Jun 7, 2002