CVE-2011-2560
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
29/08/2011
Last modified:
11/04/2025
Description
The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x does not properly handle idle TCP connections, which allows remote attackers to cause a denial of service (memory consumption and restart) by making many connections, aka Bug ID CSCtf97162.
Impact
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.2.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.2.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2b:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:unified_communications_manager:4.3\(1\):*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page