CVE-2007-5537

Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(2), and Unified CallManager 5.0, allow remote attackers to cause a denial of service (kernel panic) via a flood of SIP INVITE messages to UDP port 5060, which triggers resource exhaustion, aka CSCsi75822.

Published: Oct 18, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-5537
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
cisco / unified_communications_manager	-	5.1\(2\).x
cisco / unified_callmanager	5.0	5.0.x

http://osvdb.org/37941
http://secunia.com/advisories/27296
http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtml
http://www.securityfocus.com/bid/26105
http://www.securitytracker.com/id?1018828
http://www.vupen.com/english/advisories/2007/3532
https://exchange.xforce.ibmcloud.com/vulnerabilities/37246

Vulnerability Database

289,599

CVE-2007-5537