Vulnslist

find the latest Cisco vulnerabilities

Cisco Unified Presence Server Denial of Service Vulnerability

cisco-sa-20130227-cups · High · Published · Updated

Cisco Unified Presence Server (CUPS) contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Cisco has released software updates that address this vulnerability. A workaround is available to mitigate this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130227-cups

Cisco advisory ·CSAF JSON

Workarounds

Filtering traffic from untrusted sources on TCP port 5060 can provide a workaround for this vulnerability.

CVEsCVE-2013-1137
Cisco Bug IDsCSCua89930
CVSS ScoreBase 7.8
Base 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source
Cisco Unified Presence Server, Cisco Unified Communications Manager IM and Presence Service

Related Products

Product CVE Evidence
Cisco RV Series Routers CVE-2013-1137 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2013-1137 Cisco OpenVuln
Cisco Unified Presence Server CVE-2013-1137 Cisco OpenVuln
Cisco Unified Communications Manager IM and Presence Service CVE-2013-1137 Cisco OpenVuln
Cisco Unified Communications Manager CVE-2013-1137 Cisco OpenVuln