CVE-2002-0505 — Vulnetix

CVE-2002-0505 PUBLISHED CVSS 5 MEDIUM

Memory leak in the Call Telephony Integration (CTI) Framework authentication for Cisco CallManager 3.0 and 3.1 before 3.1(3) allows remote attackers to cause a denial of service (crash and reload) via a series of authentication failures, e.g. via incorrect passwords.

EPSS 0.82% · 74.8th percentile

Risk Scores

CVSS 2.0

EPSS Score

0.82%

74.8th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
cisco	call_manager	3.0, 3.1

Exploit Intelligence

20020327 LDAP Connection Leak in CTI when User Authentication Fails (circl)
4370 (circl)
cisco-cti-memory-leak(8655) (circl)

Timeline

Mar 27, 2002 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 27, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 26, 2023 EPSS Score
Jul 17, 2023 EPSS Score

References

20020327 LDAP Connection Leak in CTI when User Authentication Fails vendor-advisory
4370 vdb
cisco-cti-memory-leak(8655) vdb
https://nvd.nist.gov/vuln/detail/CVE-2002-0505 advisory

Open in Interactive Console →