Full Disclosure mailing list archives

Cisco Security Advisory: Cisco Unified Communications Manager IM and Presence Service Denial of Service Vulnerability

From: Cisco Systems Product Security Incident Response Team <psirt () cisco com>
Date: Wed, 21 Aug 2013 12:09:20 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Cisco Unified Communications Manager IM and Presence Service Denial of Service Vulnerability

Advisory ID: cisco-sa-20130821-cup

Revision 1.0

For Public Release 2013 August 21 16:00  UTC (GMT)
+---------------------------------------------------------------------

Summary
=======

Cisco Unified Communications Manager IM and Presence Service contains a denial of service (DoS) vulnerability that 
could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. Exploitation of this 
vulnerability could cause an interruption of presence services.

Cisco has released free software updates that address this vulnerability.  

There are no workarounds available to mitigate exploitation of this vulnerability.

This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130821-cup
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.18 (Darwin)
Comment: GPGTools - http://gpgtools.org

iF4EAREIAAYFAlIUzXQACgkQUddfH3/BbTofOAD9EqfgTnNVxIJYLzYUC5gIn8Hs
xU7IztTDmNcT5MYk7JIA+gLzD3I64qxWRUvGie8/9Wpex+7g7n07l/oYPKZ35j8h
=h+xc
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Cisco Security Advisory: Cisco Unified Communications Manager IM and Presence Service Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Aug 21)