VDB
CVE-2009-2864
CVE-2009-2864
PUBLISHED
CVSS 7.800000190734863 HIGH
Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 5.x before 5.1(3g), 6.x before 6.1(4), 7.0.x before 7.0(2a)su1, and 7.1.x before 7.1(2) allows remote attackers to cause a denial of service (service restart) via malformed SIP messages, aka Bug ID CSCsz95423.
EPSS 1.56% · 81.8th percentile
Risk Scores
CVSS 2.0
7.800000190734863
EPSS Score
1.56%
81.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | unified_communications_manager | 6.1\(2\), 6.1\(2\)su1, 6.1\(2\)su1a |
| n/a | n/a | * |
| cisco | unified_callmanager | 6.1\(1b\), 6.1\(2\), * |
Exploit Intelligence
- 58344 (circl)
- http://tools.cisco.com/security/center/viewAlert.x?alertId=18883 (circl)
- 20090923 Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability (circl)
- 1022931 (circl)
- 36836 (circl)
- ADV-2009-2757 (circl)
- cisco-ucm-sip-dos(53447) (circl)
- 36496 (circl)
Timeline
- Sep 23, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 58344 vdb
- http://tools.cisco.com/security/center/viewAlert.x?alertId=18883 url
- 20090923 Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability vendor-advisory
- 1022931 vdb
- 36836 third-party-advisory
- ADV-2009-2757 vdb
- cisco-ucm-sip-dos(53447) vdb
- 36496 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2009-2864 advisory