CVE-2007-1834 - OpenCVE

Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allow remote attackers to cause a denial of service (loss of voice services) via a flood of ICMP echo requests, aka bug ID CSCsf12698.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:N/AC:L/Au:N/C:N/I:N/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Unified Callmanager Unified Presence Server

Configuration 1 [-]

OR	cpe:2.3:a:cisco:unified_callmanager:5.0:::::::*
	cpe:2.3:a:cisco:unified_callmanager:5.0\(1\):::::::*
	cpe:2.3:a:cisco:unified_callmanager:5.0\(2\):::::::*
	cpe:2.3:a:cisco:unified_callmanager:5.0\(3\):::::::*
	cpe:2.3:a:cisco:unified_callmanager:5.0\(3a\):::::::*
	cpe:2.3:a:cisco:unified_callmanager:5.0\(4\):::::::*
	cpe:2.3:a:cisco:unified_presence_server:1.0:::::::*
	cpe:2.3:a:cisco:unified_presence_server:1.0\(1\):::::::*
	cpe:2.3:a:cisco:unified_presence_server:1.0\(2\):::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/24690
http://securitytracker.com/id?1017826
http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml
http://www.securityfocus.com/bid/23181
http://www.vupen.com/english/advisories/2007/1144
https://exchange.xforce.ibmcloud.com/vulnerabilities/33299

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-03T00:00:00

Updated: 2024-08-07T13:13:40.484Z

Reserved: 2007-04-02T00:00:00

Link: CVE-2007-1834

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-04-03T00:19:00.000

Modified: 2017-07-29T01:31:02.313

Link: CVE-2007-1834

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-03-28T00:00:00", "descriptions": [{"lang": "en", "value": "Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allow remote attackers to cause a denial of service (loss of voice services) via a flood of ICMP echo requests, aka bug ID CSCsf12698."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1017826", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017826"}, {"name": "ADV-2007-1144", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1144"}, {"name": "20070328 Multiple Cisco Unified CallManager and Presence Server Denial of Service Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml"}, {"name": "cisco-callmanager-presence-icmp-dos(33299)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33299"}, {"name": "23181", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/23181"}, {"name": "24690", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/24690"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-1834", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allow remote attackers to cause a denial of service (loss of voice services) via a flood of ICMP echo requests, aka bug ID CSCsf12698."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1017826", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017826"}, {"name": "ADV-2007-1144", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1144"}, {"name": "20070328 Multiple Cisco Unified CallManager and Presence Server Denial of Service Vulnerabilities", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml"}, {"name": "cisco-callmanager-presence-icmp-dos(33299)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33299"}, {"name": "23181", "refsource": "BID", "url": "http://www.securityfocus.com/bid/23181"}, {"name": "24690", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/24690"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T13:13:40.484Z"}, "title": "CVE Program Container", "references": [{"name": "1017826", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1017826"}, {"name": "ADV-2007-1144", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/1144"}, {"name": "20070328 Multiple Cisco Unified CallManager and Presence Server Denial of Service Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml"}, {"name": "cisco-callmanager-presence-icmp-dos(33299)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33299"}, {"name": "23181", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/23181"}, {"name": "24690", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/24690"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-1834", "datePublished": "2007-04-03T00:00:00", "dateReserved": "2007-04-02T00:00:00", "dateUpdated": "2024-08-07T13:13:40.484Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "37FEF567-5F92-40BB-8581-3FCF584AAA1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "C5865997-F8B2-4ABB-96DF-3AE691A7CE5B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(2\\):*:*:*:*:*:*:*", "matchCriteriaId": "E9211420-9F35-4872-879A-5F7CA29C6299", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3\\):*:*:*:*:*:*:*", "matchCriteriaId": "D7DD4B55-4C68-45CD-988E-D470C26E5E71", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3a\\):*:*:*:*:*:*:*", "matchCriteriaId": "48C1B081-1FD7-4BBD-84BD-E1E5F80C74FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(4\\):*:*:*:*:*:*:*", "matchCriteriaId": "BC32C417-3E61-4892-9A42-C31C6D62F09D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_presence_server:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "7F897DA4-E313-45C8-A4FB-52404D6541BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_presence_server:1.0\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "22B299D9-A18B-41D9-B976-57AFDAA751DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_presence_server:1.0\\(2\\):*:*:*:*:*:*:*", "matchCriteriaId": "CDA3BA5D-2CEB-4AAC-8CB4-4A2CDC574076", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allow remote attackers to cause a denial of service (loss of voice services) via a flood of ICMP echo requests, aka bug ID CSCsf12698."}, {"lang": "es", "value": "Cisco Unified CallManager (CUCM) 5.0 anterior a 5.0(4a)SU1 y Cisco Unified Presence Server (CUPS) 1.0 anterior a 1.0(3) permite a atacantes remotos provocar una denegaci\u00f3n de servicio (p\u00e9rdida de servicios de voz) mediante una inundaci\u00f3n de peticiones de eco ICMP, tambi\u00e9n conocido como bug ID CSCsf12698."}], "id": "CVE-2007-1834", "lastModified": "2017-07-29T01:31:02.313", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-04-03T00:19:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/24690"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://securitytracker.com/id?1017826"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/23181"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/1144"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33299"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}