Technical Description

Multiple vulnerabilities have been identified in Cisco Unified Communications Manager (CUCM), which could be exploited by attackers to bypass security restrictions or cause a denial of service.

The first is caused by an error in the Computer Telephony Integration (CTI) Manager service when handling malformed input sent to port 2748/TCP, which could be exploited to cause the interruption of voice services, creating a denial of service condition.

The second vulnerability is caused by an error in the Real-Time Information Server (RIS) Data Collector service, which could allow attackers to bypass authentication checks and gain read-only access to information about a CUCM cluster including performance statistics, user names, and configured IP phones.

Affected Products

Cisco Unified CallManager version 4.1
Cisco Unified Communications Manager versions prior to 4.2(3)SR4
Cisco Unified Communications Manager versions prior to 4.3(2)SR1
Cisco Unified Communications Manager versions prior to 5.1(3c)
Cisco Unified Communications Manager versions prior to 6.1(2)

Solution

Upgrade to Cisco Unified Communications Manager (CUCM) version 4.2(3)SR4, 4.3(2)SR1, 5.1(3c) or 6.1(2) :
http://www.cisco.com/warp/public/707/cisco-sa-20080625-cucm.shtml

References

http://www.vupen.com/english/advisories/2008/1933
http://www.cisco.com/warp/public/707/cisco-sa-20080625-cucm.shtml

Credits

Vulnerabilities reported by VoIPshield.

ChangeLog

2008-06-26 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.