Denial of Service Vulnerability in Cisco Unified Presence by Cisco
CVE-2010-2839

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Presence Server
Vendor: CVE Published:; 26 August 2010

Summary

The flawed handling of Session Initiation Protocol (SIP) messages in Cisco Unified Presence can lead to a denial of service. Attackers can exploit this vulnerability by sending specially crafted SIP messages, which may cause stack memory corruption and result in process failure, interrupting services reliant on the application.

References

http://www.vupen.com/english/advisories/2010/2186

vdb-entryx_refsource_VUPEN

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Aug 26, 2010
Vulnerability Reserved
Jul 23, 2010