Friday | 5 December, 2008

Cisco warns of Unified Communications Manager flaw

Cisco has made available a free software fix for affected customers

Linda Leung (Network World) 18 January, 2008 07:24:18

Cisco Wednesday released its first new security alert of the year: a warning that its Cisco Unified Communications Manager - formerly CallManager - contains a heap overflow vulnerability in the Certificate Trust List that could allow a hacker to cause a denial-of-service attack or execute arbitrary code.

Cisco has made available a free software fix for affected customers, and a workaround is available in its security advisory.

The products that are vulnerable are:

-- Cisco Unified CallManager 4.0

-- Cisco Unified CallManager 4.1 Versions prior to 4.1(3)SR5c

-- Cisco Unified Communications Manager 4.2 Versions prior to 4.2(3) SR3

-- Cisco Unified Communications Manager 4.3 Versions prior to 4.3(1) SR1

Cisco says it is not aware of any public announcements or malicious use of the vulnerability, which was reported to Cisco from TippingPoint.

Have your say!

More by Linda Leung

ARN Directory | Distributors relevant to this article

Annuity Systems , Express Data , Express Online , Firewall Systems , Ingram Micro Australia , Multimedia Technology , Topstar Computer International , Westcon Group

Market Place

Power through the disruptions: Uninterruptibility from Eaton!

Find out how to win an IPod Touch with ARN.

Kaspersky Internet Security 2009 released - with virtual keyboard for safe entry of passwords. Try it..

POS POS is the leading value-added distributor of point of sale & point of service technologies in ANZ.

Become a Lenovo Legend Now! Join the sales incentive exclusively for Lenovo Business Partners.

More >

More >

More >

More >

ARN Distributor Directory

Find distributors by name
Find distributors by vendor
Find distributors by location

ARN Vendor Directory

Find vendors by name | Find by category

Unified Communications Market Watch Virtualisation

ARN Library

Read Material

Bankstown Council streamlines their IT with Microsoft® Windows Server® 2008

Deciding it was time for more streamlined operations, Bankstown Council teamed up with OSS Infotech, a Microsoft Gold Certified Partner. The solution included Microsoft Windows Server, Microsoft SQL Server® and Microsoft Exchange®.

Cisco warns of Unified Communications Manager flaw

Nokia unveils the N97, its new flagship phone

2008 geek gadget gift guide

IDC: Netbooks keep Q3 PC sales afloat

Fuji Xerox looks to change partner fortunes

Integ reduces headcount

Nokia unveils the N97, its new flagship phone

Nokia N97: A closer look

Fuji Xerox looks to change partner fortunes

HP partners at the races

The top must-follow Twitter feeds

Green IT: Beyond the hype

Virtual desktops

SLIDESHOW: Future on the rack

Consolidate, virtualise, automate

Will datacentre issues disappear into the cloud?

CSIRO confident despite Buffalo win

Adobe confirms job losses certain in Australia

Court puts CSIRO Wi-Fi injunction on hold

Adobe says it will cut 600 jobs, lowers revenue guidance

HTC buys design firm

Networking

Storage

Datacentre

Security

Virtualisation

Bankstown Council streamlines their IT with Microsoft® Windows Server® 2008

Cisco warns of Unified Communications Manager flaw

Not a member?

Bankstown Council streamlines their IT with Microsoft® Windows Server® 2008

Buying Guides

Latest Products

Buying Guides