← Back

CVE-2009-2054

nvd nist
Published: Aug 27, 2009Modified: Apr 23, 2026

JSON object

Loading...
7.8
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:C
Exploitability: 10.0 / Impact: 6.9
Source: NVD

Description

Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x before 6.1(4), 7.0 before 7.0(2a)su1, and 7.1 before 7.1(2a)su1 allows remote attackers to cause a denial of service (file-descriptor exhaustion and SIP outage) via a flood of TCP packets, aka Bug ID CSCsx23689.

Affected (4)

Cisco
1 product
Unified Communications Manager
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Unified Communications Manager
From 4.0 to 5.1\(3g\)
Unified Communications Manager
From 6.0 to 6.1\(4\)
Unified Communications Manager
From 7.0 to 7.0\(2a\)su1
Unified Communications Manager
From 7.1 to 7.1\(2a\)su1

Related CWEs

CWE-770
Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (12)

Source: psirt@cisco.com
Broken Link
Source: psirt@cisco.com
Broken Link
Source: psirt@cisco.com
Broken Link
Source: psirt@cisco.com
Broken LinkPatchVendor Advisory
Source: psirt@cisco.com
Broken LinkThird Party AdvisoryVDB Entry
Source: psirt@cisco.com
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry

Timeline

No history available yet.