What is the severity of CVE-2011-2560?

CVE-2011-2560 has a severity rating that indicates a significant impact due to potential denial of service.

How do I fix CVE-2011-2560?

To fix CVE-2011-2560, it is recommended to upgrade Cisco Unified Communications Manager to a patched version that addresses this vulnerability.

What systems are affected by CVE-2011-2560?

CVE-2011-2560 affects Cisco Unified Communications Manager versions 4.x, including specific sub-releases.

Can CVE-2011-2560 be exploited remotely?

Yes, CVE-2011-2560 can be exploited remotely by attackers making numerous TCP connections to the affected system.

What type of attack is associated with CVE-2011-2560?

The attack associated with CVE-2011-2560 is a denial of service that leads to memory consumption and system restarts.

Vulnerability/
CVE-2011-2560

high

7.8

CWE

399

29/8/2011

17/9/2024

CVE-2011-2560

First published: Mon Aug 29 2011(Updated: )

The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x does not properly handle idle TCP connections, which allows remote attackers to cause a denial of service (memory consumption and restart) by making many connections, aka Bug ID CSCtf97162.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Unified Communications Manager	=4.2.3sr2
Cisco Unified Communications Manager	=4.1\(3\)sr1
Cisco Unified Communications Manager	=4.2.3sr1
Cisco Unified Communications Manager	=4.1\(3\)sr2
Cisco Unified Communications Manager	=4.1\(3\)
Cisco Unified Communications Manager	=4.2
Cisco Unified Communications Manager	=4.3
Cisco Unified Communications Manager	=4.2.3
Cisco Unified Communications Manager	=4.1\(3\)sr4
Cisco Unified Communications Manager	=4.2.1
Cisco Unified Communications Manager	=4.2.2
Cisco Unified Communications Manager	=4.3\(1\)
Cisco Unified Communications Manager	=4.1\(3\)sr3
Cisco Unified Communications Manager	=4.2.3sr2b

Never miss a vulnerability like this again

Reference Links

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml

Frequently Asked Questions

What is the severity of CVE-2011-2560?
CVE-2011-2560 has a severity rating that indicates a significant impact due to potential denial of service.
How do I fix CVE-2011-2560?
To fix CVE-2011-2560, it is recommended to upgrade Cisco Unified Communications Manager to a patched version that addresses this vulnerability.
What systems are affected by CVE-2011-2560?
CVE-2011-2560 affects Cisco Unified Communications Manager versions 4.x, including specific sub-releases.
Can CVE-2011-2560 be exploited remotely?
Yes, CVE-2011-2560 can be exploited remotely by attackers making numerous TCP connections to the affected system.
What type of attack is associated with CVE-2011-2560?
The attack associated with CVE-2011-2560 is a denial of service that leads to memory consumption and system restarts.

agent/type
agent/softwarecombine
agent/severity
agent/references
agent/weakness
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/cisco
canonical/cisco unified communications manager
version/cisco unified communications manager/4.1\(3\)
version/cisco unified communications manager/4.1\(3\)sr1
version/cisco unified communications manager/4.1\(3\)sr2
version/cisco unified communications manager/4.1\(3\)sr3
version/cisco unified communications manager/4.1\(3\)sr4
version/cisco unified communications manager/4.2
version/cisco unified communications manager/4.2.1
version/cisco unified communications manager/4.2.2
version/cisco unified communications manager/4.2.3
version/cisco unified communications manager/4.2.3sr1
version/cisco unified communications manager/4.2.3sr2
version/cisco unified communications manager/4.2.3sr2b
version/cisco unified communications manager/4.3
version/cisco unified communications manager/4.3\(1\)