Denial of Service Vulnerability in Cisco Unified Presence
CVE-2008-1158

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Presence Server; Unified Presence
Vendor: CVE Published:; 16 May 2008

Summary

The Presence Engine service in Cisco Unified Presence versions prior to 6.0(1) is susceptible to a denial of service attack. Remote attackers can exploit this vulnerability by sending specifically crafted malformed packets, which leads to a core dump and significant service interruptions. This issue highlights the importance of keeping Cisco Unified Presence updated to mitigate risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/29219

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/42412

vdb-entryx_refsource_XF

Timeline

Vulnerability published
May 16, 2008
Vulnerability Reserved
Mar 5, 2008