CVE-2011-2561

Published: Aug 29, 2011Modified: Apr 29, 2026

7.1

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitability: 8.6 / Impact: 6.9

Source: NVD

Description

The SIP process in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.x before 7.1(5b)su4 and 8.x before 8.0(1) does not properly handle SDP data within a SIP call in certain situations related to use of the g729ar8 codec for a Media Termination Point (MTP), which allows remote attackers to cause a denial of service (service outage) via a crafted call, aka Bug ID CSCtc61990.

Affected (27)

Products: Cisco: Unified Communications Manager

Cisco

1 product

Unified Communications Manager

Configuration A

27 vulnerable

Vulnerable Software	Affected Versions
Cisco Unified Communications Manager	Version 7.0(1)su1
Cisco Unified Communications Manager	Version 7.0(1)su1a
Cisco Unified Communications Manager	Version 7.0(2)
Cisco Unified Communications Manager	Version 7.0(2a)
Cisco Unified Communications Manager	Version 7.0(2a)su1
Cisco Unified Communications Manager	Version 7.0(2a)su2
Cisco Unified Communications Manager	Version 7.1(2a)
Cisco Unified Communications Manager	Version 7.1(2a)su1
Cisco Unified Communications Manager	Version 7.1(2b)
Cisco Unified Communications Manager	Version 7.1(2b)su1
Cisco Unified Communications Manager	Version 7.1(3)
Cisco Unified Communications Manager	Version 7.1(3a)
Cisco Unified Communications Manager	Version 7.1(3a)su1
Cisco Unified Communications Manager	Version 7.1(3a)su1a
Cisco Unified Communications Manager	Version 7.1(3b)
Cisco Unified Communications Manager	Version 7.1(3b)su1
Cisco Unified Communications Manager	Version 7.1(3b)su2
Cisco Unified Communications Manager	Version 7.1(5)
Cisco Unified Communications Manager	Version 7.1(5)su1
Cisco Unified Communications Manager	Version 7.1(5)su1a
Cisco Unified Communications Manager	Version 7.1(5a)
Cisco Unified Communications Manager	Version 7.1(5b)
Cisco Unified Communications Manager	Version 7.1(5b)su1
Cisco Unified Communications Manager	Version 7.1(5b)su1a
Cisco Unified Communications Manager	Version 7.1(5b)su2
Cisco Unified Communications Manager	Version 7.1(5b)su3
Cisco Unified Communications Manager	Version 8.0

Related CWEs

CWE-399

References (2)

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml

Source: psirt@cisco.com

Vendor Advisory

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.