CVE-2007-1833

CWE-3994 documents4 sources
Severity
5.0MEDIUM
EPSS
2.6%
top 14.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Unified Callmanager
Timeline
PublishedApr 3
Latest updateMay 1

Description

The Skinny Call Control Protocol (SCCP) implementation in Cisco Unified CallManager (CUCM) 3.3 before 3.3(5)SR2a, 4.1 before 4.1(3)SR4, 4.2 before 4.2(3)SR1, and 5.0 before 5.0(4a)SU1 allows remote attackers to cause a denial of service (loss of voice services) by sending crafted packets to the (1) SCCP (2000/tcp) or (2) SCCPS (2443/tcp) port.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDcisco/unified_callmanager25 versions+24

Patches

Patch: secunia.comPatch: securitytracker.comPatch: www.cisco.com

🔴Vulnerability Details

2
GHSA
GHSA-6p2g-28fm-38rf: The Skinny Call Control Protocol (SCCP) implementation in Cisco Unified CallManager (CUCM) 32022-05-01
CVEList
CVE-2007-1833: The Skinny Call Control Protocol (SCCP) implementation in Cisco Unified CallManager (CUCM) 32007-04-03

📋Vendor Advisories

1
Cisco
Multiple Cisco Unified CallManager and Presence Server Denial of Service Vulnerabilities2007-03-28
CVE-2007-1833 (MEDIUM CVSS 5) | The Skinny Call Control Protocol (S | cvebase.io