Vulnerability Bulletins |
Denegación de servicio en Cisco Unified Contact Center y Cisco IP Contact Center |
|
Vulnerability classification |
|
| Property | Value |
| Confidence level | Oficial |
| Impact | Denegación de Servicio |
| Dificulty | Experto |
| Required attacker level | Acceso remoto sin cuenta a un servicio estandar |
System information |
|
| Property | Value |
| Affected manufacturer | Networking |
| Affected software |
Cisco Unified Contact Center Enterprise Cisco Unified Contact Center Hosted Cisco IP Contact Center Enterprise Cisco IP Contact Center Hosted |
Description |
|
|
Se ha descubierto una vulnerabilidad en Cisco Unified Contact Center Enterprise, Cisco Unified Contact Center Hosted, Cisco IP Contact Center Enterprise, y Cisco IP Contact Center Hosted. La vulnerabilidad reside en un error no especificado que causaría el reinicio del proceso JTapi Gateway y durante el proceso no podría procesar nuevas conexiones aunque las que ya estuviesen establecidas continuarían funcionando. Un atacante remoto necesitaría completar la fase de conexión TCP 3-way handshake con el puerto del servidor JTapi y una vez conseguido podría causar el reinicio de dicho proceso. |
|
Solution |
|
|
Actualización de software Cisco Cisco Unified Contact Center / IP Contact Center JTapi Gateway / Version 5.0 / patch CM5.0(0)_SR13_ES18 http://www.cisco.com/pcgi-bin/tablebuild.pl/d4b330d7b9c07d33f2833e1be69c6145 Cisco Unified Contact Center / IP Contact Center JTapi Gateway / Version 6.0 / patch ICM6.0(0)_SR8_ES3 http://www.cisco.com/pcgi-bin/tablebuild.pl/48b796a9ba353f2d02897ae3e6bb1140 Cisco Unified Contact Center / IP Contact Center JTapi Gateway / Version 6.0 / patch 6.0(0)_SR9_ES1 http://www.cisco.com/pcgi-bin/tablebuild.pl/2008d93eba6ab0cd6be05634f90962f3 Cisco Unified Contact Center / IP Contact Center JTapi Gateway / Version 7.0 / patch ICM7.0(0)_SR4_ES43 http://www.cisco.com/pcgi-bin/tablebuild.pl/47564eac9ea7b12357226a5f20bbbd66 Cisco Unified Contact Center / IP Contact Center JTapi Gateway / Version 7.1 / patch ICM7.1(3)_ES5 http://www.cisco.com/pcgi-bin/tablebuild.pl/9df0152592e9779b3f9e8701a94e4422 |
|
Standar resources |
|
| Property | Value |
| CVE | |
| BID | |
Other resources |
|
|
Cisco Security Advisory (cisco-sa-20070110-jtapi) http://www.cisco.com/en/US/products/products_security_advisory09186a00807bd12a.shtml |
|
Version history |
||
| Version | Comments | Date |
| 1.0 | Aviso emitido | 2007-01-12 |
| 1.1 | Aviso actualizado por Cisco (cisco-sa-20070110-jtapi) | 2007-01-30 |