Denial of Service Vulnerability in Cisco Unified Presence Server
CVE-2014-3328

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Presence Server
Vendor: CVE Published:; 26 July 2014

Summary

The Intercluster Sync Agent Service in Cisco Unified Presence Server is susceptible to a denial of service attack. Attackers can exploit this vulnerability by initiating a TCP SYN flood, which overwhelms the service and leads to disruption, impeding normal operations. Organizations using this product should be aware of the potential risks and take appropriate steps to mitigate such attacks.

References

http://www.securityfocus.com/bid/68901

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1030643

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jul 26, 2014
Vulnerability Reserved
May 7, 2014