Vulnerability in Cisco Unified_presence_server

CVE-2010-2839

SIPD in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) allows remote attackers to cause a denial of service (stack memory corruption and process failure) via a malformed SIP message, aka Bug ID CSCtd14474.

EPSS: 0.004 (62.7th percentile) — read the EPSS interpretation.

Affected products

Cisco Unified_presence_server — versions 6.0\(5.1101-1\), 7.0.3.10103-2, 6.0\(3.1101-2\)
N/a — versions n/a

Weakness classification (CWE)

CWE-399

References

ADV-2010-2186 (vdb-entry, x_refsource_VUPEN)
20100825 Cisco Unified Presence Denial of Service Vulnerabilities (x_refsource_CISCO, vendor-advisory, Patch, Vendor Advisory)