CVE-2005-2241

Published: Jul 12, 2005Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 does not quickly time out Realtime Information Server Data Collection (RISDC) sockets, which results in a "resource leak" that allows remote attackers to cause a denial of service (memory and connection consumption) in RisDC.exe.

Affected (4)

Products: Cisco: Call Manager

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Cisco Call Manager	Version 3.2
Cisco Call Manager	Version 3.3
Cisco Call Manager	Version 4.0
Cisco Call Manager	Version 4.1

References (4)

http://www.cisco.com/warp/public/707/cisco-sa-20050712-ccm.shtml

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/14250

Source: cve@mitre.org

http://www.cisco.com/warp/public/707/cisco-sa-20050712-ccm.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/14250

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.