Strix
26.1K

CVE-2012-0367

UnknownEPSS 2.67%

Last modified

CVE-2012-0367 is a vulnerability of currently unknown severity. Cisco Unity Connection before 7.1.5b(Su5), 8.0 and 8.5 before 8.5.1(Su3), and 8.6 before 8.6.2 allows remote attackers to cause a denial of service (services crash) via a series of crafted TCP segments, aka Bug ID CSCtq67899.. EPSS estimates a 2.67% chance of exploitation in the next 30 days.

Description

Cisco Unity Connection before 7.1.5b(Su5), 8.0 and 8.5 before 8.5.1(Su3), and 8.6 before 8.6.2 allows remote attackers to cause a denial of service (services crash) via a series of crafted TCP segments, aka Bug ID CSCtq67899.

Metrics

EPSS Probability
2.67%

83.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoUnity Connection<= 7.1\(5b\)su4
CiscoUnity Connection1.1
CiscoUnity Connection1.1\(1\)
CiscoUnity Connection1.1\(1\)_es1
CiscoUnity Connection1.1\(1\)_es12
CiscoUnity Connection1.1\(1\)_sr1
CiscoUnity Connection1.2
CiscoUnity Connection1.2\(1\)
CiscoUnity Connection1.2\(1\)_es65
CiscoUnity Connection1.2\(1\)sr2
CiscoUnity Connection2.0
CiscoUnity Connection2.0\(1\)
CiscoUnity Connection2.1
CiscoUnity Connection2.1\(1\)
CiscoUnity Connection2.1\(2\)
CiscoUnity Connection2.1\(3\)
CiscoUnity Connection2.1\(3b\)su1
CiscoUnity Connection2.1\(4\)
CiscoUnity Connection2.1\(4\)su1
CiscoUnity Connection2.1\(4a\)
CiscoUnity Connection2.1\(4a\)su2
CiscoUnity Connection2.1\(5\)
CiscoUnity Connection2.1\(5\)su1
CiscoUnity Connection2.1\(5\)su2
CiscoUnity Connection2.1\(5\)su3
CiscoUnity Connection6.1\(3b\)su1
CiscoUnity Connection7.0
CiscoUnity Connection7.0\(2\)
CiscoUnity Connection7.0\(2a\)su2
CiscoUnity Connection7.0\(2a\)su3
CiscoUnity Connection7.1
CiscoUnity Connection7.1\(2\)
CiscoUnity Connection7.1\(2a\)
CiscoUnity Connection7.1\(2a\)su1
CiscoUnity Connection7.1\(2b\)
CiscoUnity Connection7.1\(2b\)su1
CiscoUnity Connection7.1\(3\)
CiscoUnity Connection7.1\(3a\)
CiscoUnity Connection7.1\(3a\)su1
CiscoUnity Connection7.1\(3a\)su1a
CiscoUnity Connection7.1\(3b\)
CiscoUnity Connection7.1\(3b\)su1
CiscoUnity Connection7.1\(3b\)su2
CiscoUnity Connection7.1\(5\)
CiscoUnity Connection7.1\(5\)su1a
CiscoUnity Connection7.1\(5a\)
CiscoUnity Connection7.1\(5b\)
CiscoUnity Connection7.1\(5b\)su2
CiscoUnity Connection7.1\(5b\)su3
CiscoUnity Connection8.0

Showing 50 of 63 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2012-0367?
Cisco Unity Connection before 7.1.5b(Su5), 8.0 and 8.5 before 8.5.1(Su3), and 8.6 before 8.6.2 allows remote attackers to cause a denial of service (services crash) via a series of crafted TCP segments, aka Bug ID CSCtq67899.
How severe is CVE-2012-0367?
Severity scoring for CVE-2012-0367 is pending analysis. The EPSS model estimates a 2.67% probability of exploitation in the next 30 days.
How do I fix CVE-2012-0367?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-0367?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST