Integrations over either IP version 4 (IPv4) or IP version 6 (IPv6) are affected.
The vulnerability is due to incorrect processing of crafted SIP INVITE messages.
An attacker could exploit this vulnerability by sending crafted SIP INVITE messages to the Cisco Unity Connection server.
This vulnerability is documented in Cisco bug ID CSCul20444 ( registered customers only )and has been assigned CVE IDCVE.download
Cisco Unity Connection system runs as a virtual machine on Cisco UCS or other specification-based hardware.
An attacker could exploit this vulnerability by sending a specific UDP packet to the configured SIP trunk of the affected device.
Optionally, administrators the can log in to the command-line interface and access the main menu.
Y Y 10.0 N N 10.5 lthough each vulnerability is independent from the other, given they all impact SIP communications, it is recommended to upgrade to a version that contains the fixes for all five vulnerabilities.
Cisco Unity Connection SIP Trunk Integration CuCsMgr Denial of Service Vulnerability A vulnerability in the Connection Conversation Manager (CuCsMgr) process of Cisco Unity Connection could allow an unauthenticated, remote attacker to cause the CuCsMgr process to core dump and restart.
The vulnerability is due to incorrect processing of specific UDP packets.
Cisco has provided a base and temporal score.
Implementations that use Skinny Call Control Protocol (SCCP ) integration are not affected by any of the vulnerabilities described in this advisory.
This vulnerability can be exploited using UDP packets only.
Cisco Unity Connection scales to support enterprise organizations with up to 100,000 users.
Information About Cisco Business Edition Cisco Business Edition 7000 and Cisco Business Edition 6000 are affected by these vulnerabilities if the Cisco Unity Connection version that is used is among the affected versions in the tables in the "Vulnerable Products" section of the security advisory.
Determine the Software Version To determine the Cisco Unity Connection software version that an appliance is running, administrators can access the Cisco Unity Connection web interface and click the About link at the top right.
The vulnerability is due to incorrect handling of incorrectly terminated SIP conversations.
Note: Cisco Unity Connection versions prior to 8.5 have reached end of software maintenance.