Cisco warns of Unified Communications Manager flaw

Cisco has made available a free software fix for affected customers

Linda Leung (Network World)
18 January, 2008 07:24
Comments

Cisco Wednesday released its first new security alert of the year: a warning that its Cisco Unified Communications Manager - formerly CallManager - contains a heap overflow vulnerability in the Certificate Trust List that could allow a hacker to cause a denial-of-service attack or execute arbitrary code.

Cisco has made available a free software fix for affected customers, and a workaround is available in its security advisory.

The products that are vulnerable are:

-- Cisco Unified CallManager 4.0

-- Cisco Unified CallManager 4.1 Versions prior to 4.1(3)SR5c

-- Cisco Unified Communications Manager 4.2 Versions prior to 4.2(3) SR3

-- Cisco Unified Communications Manager 4.3 Versions prior to 4.3(1) SR1

Cisco says it is not aware of any public announcements or malicious use of the vulnerability, which was reported to Cisco from TippingPoint.

Come socialise with us! Facebook | LinkedIn

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email ARN
Follow ARN on twitter

More about: Cisco, TippingPoint, TippingPoint

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Whitepapers

Latest Stories

Community Comments

"It should read as Australasian owned, not Australian owned."

Datacom joins AFP, Microsoft and ninemsn to support ThinkUKnow
"the new lenovo x130e 's r alright but they blocked eveything '"

Lenovo awarded NSW DET netbook contract
"Have you any idea just about any cheap�discount�hotels in Espoo, Finland?"

Telstra-NBN Co wholesale broadband agreement “imminent”
"I wonder if spam will increase?"

Telstra BigPond email with Windows Live capabilities
"wow, looked like a good sales speal from DH but after failing ..."

Panasonic ramps up healthcare presence

ARN Directory | Distributors relevant to this article

Alloys , Annuity Systems , Distribution Central , Express Data , Express Online , Firewall Systems , Ingram Micro Australia , Multimedia Technology , Simms International (For Simms International please see Express Online) , Wavelink , Westcon Group , Fusion Power Systems

Most Read

Get exclusive access to ARN's news, research and invitation only events.

Latest Jobs

Most Commented

ARN Distributor Directory

Find distributors by name | vendor | location

Channel Deals

ACA Pacific

StorageCraft ShadowProtect Granular Recovery for Exchange Special. Ends March 30th, 2012.

More details »

ARN Vendor Directory

Find vendors by name | category

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.

Featured Whitepapers

HiveManager Online: Less Dollars, More Sense

Today’s de facto standard controller-based Wi-Fi infrastructure model is just too complicated, too expensive, and too unreliable. It’s common for enterprise and mid-market network operators alike to get caught in a crossroads of compromises involving costs, complexity, features, and reliability.

Most Popular Whitepapers