CVE-2005-2242
published 2005-07-12CVE-2005-2242: Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to cause a denial of…
PriorityP424medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
3.91%
89.0th percentile
Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to cause a denial of service (memory consumption and restart) via crafted packets to (1) the CTI Manager (ctimgr.exe) or (2) the CallManager (ccm.exe).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | callmanager | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-w635-r3jv-vvc6: Cisco CallManager (CCM) 3
ghsa_unreviewed·2022-05-01
CVE-2005-2242 [MEDIUM] GHSA-w635-r3jv-vvc6: Cisco CallManager (CCM) 3
Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to cause a denial of service (memory consumption and restart) via crafted packets to (1) the CTI Manager (ctimgr.exe) or (2) the CallManager (ccm.exe).
Cisco
Cisco CallManager Memory Handling Vulnerabilities
vendor_cisco·2005-07-12
CVE-2005-2241 Cisco CallManager Memory Handling Vulnerabilities
Cisco CallManager Memory Handling Vulnerabilities
Cisco CallManager (CCM) is the software-based call-processing component
of the Cisco IP telephony solution which extends enterprise telephony features
and functions to packet telephony network devices such as IP phones, media
processing devices, voice-over-IP (VoIP) gateways, and multimedia applications.
Cisco CallManager 3.3 and earlier, 4.0, and 4.1 are vulnerable to Denial of
Service (DoS) attacks, memory leaks, and memory corruption which may result in
services being interrupted, servers rebooting, or arbitrary code being
executed.
Cisco has made free software available to address these
vulnerabilities.
This advisory will be posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20050712-ccm.
Cisco
Cisco CallManager Memory Handling Vulnerabilities
vendor_cisco
CVE-2005-2242 Cisco CallManager Memory Handling Vulnerabilities
CVE-2005-2242: Cisco CallManager Memory Handling Vulnerabilities
Cisco CallManager (CCM) is the software-based call-processing component of the Cisco IP telephony solution which extends enterprise telephony features and functions to packet telephony network devices such as IP phones, media processing devices, voice-over-IP (VoIP) gateways, and multimedia applications. Cisco CallManager 3.3 and earlier, 4.0, and 4.1 are vulnerable to Denial of Service (DoS) attacks, memory leaks, and memory corruption which may result in services being interrupted, servers rebooting, or arbitrary code being executed. Cisco has made free software available to address these vulnerabilities. This advisory will be posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2
No detection rules found.
No writeups or analysis indexed.
2005-07-12
Published