Cisco Unity Bug in Microsoft API Lets Remote Users Deny Service

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

SecurityTracker Alert ID: 1021020

SecurityTracker URL: http://securitytracker.com/id/1021020

CVE Reference: CVE-2008-4544 (Links to External Site)

Updated: Oct 14 2008

Original Entry Date: Oct 9 2008

Impact: Denial of service via network

Vendor Confirmed: Yes

Version(s): 4.x, 5.x, 7.x

Description: A vulnerability was reported in Cisco Unity. A remote user can cause denial of service conditions.

A remote user can send specially crafted UDP packets to cause denial of service conditions.

The vulnerability resides in a Microsoft Windows API.

Cisco has assigned Cisco Bug ID CSCsr86990 to this vulnerability.

Impact: A remote user can cause denial of service conditions.

Solution: No solution was available at the time of this entry.

Microsoft is working on a fix.

The vendor's advisory is available at:

www.cisco.com/warp/public/707/cisco-sr-20081008-unity.shtml

Vendor URL: www.cisco.com/warp/public/707/cisco-sr-20081008-unity.shtml (Links to External Site)

Cause: Not specified

Message History: None.

Date: Wed, 8 Oct 2008 17:28:00 -0400
Subject: Cisco Security Response: VoIPshield Reported Vulnerabilities in Cisco Unity Server


http://www.cisco.com/warp/public/707/cisco-sr-20081008-unity.shtml