CVE-2012-3935

Cisco Unified Presence (CUP) before 8.6(3) and Jabber Extensible Communications Platform (aka Jabber XCP) before 5.3 allow remote attackers to cause a denial of service (process crash) via a crafted XMPP stream header, aka Bug ID CSCtu32832.

Published: Sep 12, 2012
Updated: Nov 9, 2025
CVE: CVE-2012-3935
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
cisco / unified_presence	6.0(4)	6.0(4).x
cisco / unified_presence	7.0	7.0.x
cisco / unified_presence	8.0(3)	8.0(3).x
cisco / unified_presence	7.0(4)	7.0(4).x
cisco / unified_presence	8.0(1)	8.0(1).x
cisco / unified_presence	7.0(8)	7.0(8).x
cisco / unified_presence	7.0(9)	7.0(9).x
cisco / unified_presence	1.0	1.0.x
cisco / unified_presence	-	8.6\(2\).x
cisco / unified_presence	6.0(6)	6.0(6).x
cisco / unified_presence	7.0(6)	7.0(6).x
cisco / unified_presence	8.0(2)	8.0(2).x
cisco / unified_presence	6.0	6.0.x
cisco / unified_presence	8.5(1)	8.5(1).x
cisco / unified_presence	8.5	8.5.x
cisco / unified_presence	8.0	8.0.x
cisco / unified_presence	6.0(1)	6.0(1).x
cisco / unified_presence	7.0(5)	7.0(5).x
cisco / unified_presence	7.0(1)	7.0(1).x
cisco / unified_presence	6.0(5)	6.0(5).x
cisco / unified_presence	7.0(7)	7.0(7).x
cisco / unified_presence	8.0(4)	8.0(4).x
cisco / unified_presence	6.0_2	6.0_2.x
cisco / unified_presence	8.6(1)	8.6(1).x
cisco / unified_presence	7.0(3)	7.0(3).x
cisco / unified_presence	8.5(3)	8.5(3).x
cisco / unified_presence	8.5(2)	8.5(2).x
cisco / unified_presence	6.0(7)	6.0(7).x
cisco / unified_presence	6.0(3)	6.0(3).x
cisco / unified_presence	6.0(2)	6.0(2).x
cisco / unified_presence	7.0(2)	7.0(2).x
cisco / unified_presence	6.0_1	6.0_1.x
cisco / jabber_extensible_communications_platform	-	5.2.x

Vulnerability Database

313,825

CVE-2012-3935

Deep Security Visibility Without the Complexity