CVE-2008-1742
Last modified
CVE-2008-1742 is a vulnerability of currently unknown severity. Memory leak in the Certificate Trust List (CTL) Provider service in Cisco Unified Communications Manager (CUCM) 5.x before 5.1(3) allows remote attackers to cause a denial of service (memory consumption and service interruption) via a series of malformed TCP packets, as demonstrated by TCPFUZZ, aka Bug ID CSCsj80609.. EPSS estimates a 1.18% chance of exploitation in the next 30 days.
Description
Memory leak in the Certificate Trust List (CTL) Provider service in Cisco Unified Communications Manager (CUCM) 5.x before 5.1(3) allows remote attackers to cause a denial of service (memory consumption and service interruption) via a series of malformed TCP packets, as demonstrated by TCPFUZZ, aka Bug ID CSCsj80609.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Cisco | Unified Communications Manager | 4.1 | — |
| Cisco | Unified Communications Manager | 4.2 | — |
| Cisco | Unified Communications Manager | 4.3 | — |
| Cisco | Unified Communications Manager | 5.1 | \(1\) |
| Cisco | Unified Communications Manager | 6.0 | — |
| Cisco | Unified Communications Manager | 6.1 | — |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-1742?
How severe is CVE-2008-1742?
How do I fix CVE-2008-1742?
Are you affected by CVE-2008-1742?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST