CVE-2008-1741

CWE-20Improper Input ValidationCWE-3997 documents5 sources
Severity
7.8HIGH
EPSS
1.9%
top 16.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Unified Presence
Timeline
PublishedMay 16
Latest updateMay 1

Description

The SIP Proxy (SIPD) service in Cisco Unified Presence before 6.0(3) allows remote attackers to cause a denial of service (core dump and service interruption) via a TCP port scan, aka Bug ID CSCsj64533.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

Patches

Patch: www.cisco.comPatch: www.cisco.com

🔴Vulnerability Details

2
GHSA
GHSA-g4gp-p23v-jg8v: The SIP Proxy (SIPD) service in Cisco Unified Presence before 62022-05-01
CVEList
CVE-2008-1741: The SIP Proxy (SIPD) service in Cisco Unified Presence before 62008-05-16

📋Vendor Advisories

1
Cisco
Cisco Unified Presence Denial of Service Vulnerabilities2008-05-14

💬Community

2
Bugzilla
CVE-2009-4245 HelixPlayer / RealPlayer: compressed GIF heap overflow2010-02-03
Bugzilla
CVE-2009-4243 HelixPlayer / RealPlayer: HTTP chunk encoding overflow2010-02-03
CVE-2008-1741 (HIGH CVSS 7.8) | The SIP Proxy (SIPD) service in Cis | cvebase.io