Denial of Service Vulnerability in Cisco Unified CallManager by Remote Attackers
CVE-2007-1833

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Callmanager
Vendor: CVE Published:; 3 April 2007

What is CVE-2007-1833?

In Cisco Unified CallManager versions prior to 3.3(5)SR2a, 4.1(3)SR4, 4.2(3)SR1, and 5.0(4a)SU1, an implementation flaw in the Skinny Call Control Protocol (SCCP) allows remote attackers to disrupt voice services. By sending specially crafted packets to the SCCP (2000/tcp) or SCCPS (2443/tcp) ports, attackers can trigger a denial of service, impacting the availability of voice communications within affected systems.

References

http://securitytracker.com/id?1017826

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/33295

vdb-entryx_refsource_XF

http://secunia.com/advisories/24665

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 3, 2007
Vulnerability Reserved
Apr 2, 2007