CVE-2014-3337

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Communications Domain Manager
Vendor: CVE Published:; 12 August 2014

Summary

The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remote authenticated users to cause a denial of service (process crash) via a crafted SIP message that is not properly handled during processing of an XML document, aka Bug ID CSCtq76428.

References

http://www.securityfocus.com/bid/69177

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1030709

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 12, 2014
Vulnerability Reserved
May 7, 2014