Description
Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, allows remote attackers to cause a denial of service (CPU consumption) via arbitrary packets to TCP port 14247, as demonstrated using port scanning.
Affected products
- Cisco / call_manager2.0 – 2.0
- Cisco / call_manager3.0 – 3.0
- Cisco / call_manager1.0 – 1.0
- Cisco / call_manager4.0 – 4.0
- Cisco / call_manager3.3(3) – 3.3(3)
- Cisco / call_manager3.3 – 3.3
- Cisco / call_manager3.2 – 3.2
- Cisco / call_manager3.1(3a) – 3.1(3a)
- Cisco / call_manager3.1(2) – 3.1(2)
- Cisco / call_manager3.1 – 3.1
- Cisco / conference_connection1.2 – 1.2
- Cisco / conference_connection1.1(1) – 1.1(1)
- Cisco / emergency_responder1.1 – 1.1
- Cisco / internet_service_node
- Cisco / ip_call_center_express_enhanced3.0 – 3.0
- Cisco / ip_call_center_express_standard3.0 – 3.0
- Cisco / ip_interactive_voice_response3.0 – 3.0
- Cisco / personal_assistant1.3(4) – 1.3(4)
- Cisco / personal_assistant1.3(3) – 1.3(3)
- Cisco / personal_assistant1.4(1) – 1.4(1)
- Cisco / personal_assistant1.3(1) – 1.3(1)
- Cisco / personal_assistant1.4(2) – 1.4(2)
- Cisco / personal_assistant1.3(2) – 1.3(2)
- ibm / director_agent3.11 – 3.11
- ibm / director_agent2.2 – 2.2
- ibm / mcs-7815-1000
- ibm / mcs-7815i-2.0
- ibm / mcs-7835i-2.4
- ibm / mcs-7835i-3.0
- ibm / x3308654 – 8654
- ibm / x3308674 – 8674
- ibm / x340
- ibm / x342
- ibm / x345
References
- MISChttp://www.kb.cert.org/vuls/id/721092
- VENDOR_ADVISORYhttp://secunia.com/advisories/10696
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/14901
- MISChttp://www.securitytracker.com/id?1008814
- VENDOR_ADVISORYhttp://www.cisco.com/warp/public/707/cisco-sa-20040121-voice.shtml
- MISChttp://www.securityfocus.com/bid/9469
- MISChttp://www.osvdb.org/3691
- MISChttp://www.ciac.org/ciac/bulletins/o-066.shtml