CVE-2007-1826
First published: Mon Apr 02 2007(Updated: )
Unspecified vulnerability in the IPSec Manager Service for Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allows remote attackers to cause a denial of service (loss of cluster services) via a "specific UDP packet" to UDP port 8500, aka bug ID CSCsg60949.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified Communications Manager | =5.0 | |
| Cisco Unified Communications Manager | =5.0\(1\) | |
| Cisco Unified Communications Manager | =5.0\(2\) | |
| Cisco Unified Communications Manager | =5.0\(3\) | |
| Cisco Unified Communications Manager | =5.0\(3a\) | |
| Cisco Unified Communications Manager | =5.0\(4\) | |
| Cisco Unified Presence | =1.0 | |
| Cisco Unified Presence | =1.0\(1\) | |
| Cisco Unified Presence | =1.0\(2\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml
- http://www.securityfocus.com/bid/23181
- http://securitytracker.com/id?1017826
- http://secunia.com/advisories/24690
- http://osvdb.org/34919
- http://www.vupen.com/english/advisories/2007/1144
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33302
Frequently Asked Questions
What is the severity of CVE-2007-1826?
CVE-2007-1826 is classified as a denial of service vulnerability affecting certain versions of Cisco Unified CallManager and Cisco Unified Presence Server.
How do I fix CVE-2007-1826?
To mitigate CVE-2007-1826, upgrade to Cisco Unified CallManager version 5.0(4a)SU1 or Cisco Unified Presence Server version 1.0(3) or later.
What systems are affected by CVE-2007-1826?
CVE-2007-1826 affects Cisco Unified CallManager versions 5.0 prior to 5.0(4a)SU1 and Cisco Unified Presence Server versions 1.0 prior to 1.0(3).
What type of attack can exploit CVE-2007-1826?
CVE-2007-1826 can be exploited by remote attackers sending a specific UDP packet to UDP port 8500, leading to a denial of service.
When was CVE-2007-1826 disclosed?
CVE-2007-1826 was disclosed on March 28, 2007, detailing the vulnerability in the affected Cisco products.
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/cisco
- canonical/cisco unified communications manager
- version/cisco unified communications manager/5.0
- version/cisco unified communications manager/5.0\(1\)
- version/cisco unified communications manager/5.0\(2\)
- version/cisco unified communications manager/5.0\(3\)
- version/cisco unified communications manager/5.0\(3a\)
- version/cisco unified communications manager/5.0\(4\)
- canonical/cisco unified presence
- version/cisco unified presence/1.0
- version/cisco unified presence/1.0\(1\)
- version/cisco unified presence/1.0\(2\)