Description
The Presence Engine (PE) service in Cisco Unified Presence before 6.0(1) allows remote attackers to cause a denial of service (core dump and service interruption) via malformed packets, aka Bug ID CSCsh50164.
Affected products
- Cisco / unified_presence6.0 – 6.0
- Cisco / unified_presence_server1.0 – 1.0
- Cisco / unified_presence_server1.0(1) – 1.0(1)
- Cisco / unified_presence_server1.0(2) – 1.0(2)
- Cisco / unified_presence_server1.0(3) – 1.0(3)
References
- MISChttp://www.securityfocus.com/bid/29219
- VENDOR_ADVISORYhttp://www.cisco.com/en/US/products/products_security_advisory09186a0080995682.shtml
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/42412
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2008/1534
- MISChttp://securitytracker.com/id?1020023
- VENDOR_ADVISORYhttp://secunia.com/advisories/30240