Cisco warns of Unified Communications Manager flaw

Cisco has made available a free software fix for affected customers

Linda Leung (Network World)
18 January, 2008 07:24
Comments

Cisco Wednesday released its first new security alert of the year: a warning that its Cisco Unified Communications Manager - formerly CallManager - contains a heap overflow vulnerability in the Certificate Trust List that could allow a hacker to cause a denial-of-service attack or execute arbitrary code.

Cisco has made available a free software fix for affected customers, and a workaround is available in its security advisory.

The products that are vulnerable are:

-- Cisco Unified CallManager 4.0

-- Cisco Unified CallManager 4.1 Versions prior to 4.1(3)SR5c

-- Cisco Unified Communications Manager 4.2 Versions prior to 4.2(3) SR3

-- Cisco Unified Communications Manager 4.3 Versions prior to 4.3(1) SR1

Cisco says it is not aware of any public announcements or malicious use of the vulnerability, which was reported to Cisco from TippingPoint.

Nominations for the 2012 ARN IT Industry Awards open on Tuesday, June 12.

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email ARN
Follow ARN on twitter

More about: Cisco, TippingPoint, TippingPoint

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Whitepapers

Latest Stories

Community Comments

"i need to seen a lates..sumsung galaxy2"

First look: Samsung Galaxy S III
"why am i being railroaded into Facebook. how disappointing. I have been ..."

Spotify tunes into Australia
"Dear Sir, We are very nice to introduce you ourselves. Now we ..."

Telstra and Navman Wireless extend GPS tracking partnership
"Should I REFINANCE a construction loan to a permanent loan OR convert ..."

World’s eyes on Aussie NBN: Conroy
"It's an remarkable paragraph in support of all the online visitors; they ..."

iPhone 5 rumour rollup for the week ending May 27

ARN Directory | Distributors relevant to this article

Alloys , Annuity Systems , Distribution Central , Express Data , Express Online , Firewall Systems , Multimedia Technology , Wavelink , Westcon Group , Fusion Power Systems

Most Read

Get exclusive access to ARN's news, research and invitation only events.

Latest Jobs

FTQM Trainer and ConsultantNSW
FTSAP Basis ConsultantACT
CCSAP PM ConsultantNSW
FTSales Account ManagerNSW
CCOBIEE ConsultantWA
CCSAP FICO ConsultantNT
FTChange Management ProfessionalsNSW
FTIT Account Manager - System Integrator - Career Progression - Start ImmediatelyNSW
FTSAP Basis ConsultantNSW
FTSales Account ManagerNSW
CCAPAC Campaign ManagerNSW

Most Commented

ARN Distributor Directory

Find distributors by name | vendor | location

Channel Deals

WhiteGold Solutions

Free Allied Telesis Wireless Router

More details »

ARN Vendor Directory

Find vendors by name | category

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.

Featured Resources

Market Potential-Strategy Guide to the Active Archive Market

The active archive market is a growing segment where tape is seen as part of a disk or network fileystem. This means that to an end user disk and tape are “blended” and whether file is held on disk or tape is “invisible” to the end user. The active archive market is the fastest growing space in the storage industry and allows direct end user access to tape through a file system front end.

Most Popular Resource Papers