製品・ソフトウェアに関する情報

JVN脆弱性詳細

Cisco CallManager におけるサービス運用妨害 (DoS) の脆弱性

Title	Cisco CallManager におけるサービス運用妨害 (DoS) の脆弱性
Summary	Cisco CallManager には、サービス運用妨害 (DoS) 状態にされる脆弱性が存在します。
Possible impacts	第三者により、サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	Jan. 22, 2006, midnight
Registration Date	March 11, 2014, 5:43 p.m.
Last Update	March 11, 2014, 5:43 p.m.

Affected System

シスコシステムズ

Cisco Call Manager (CCM) 3.2 およびそれ以前

Cisco Call Manager (CCM) 3.3(5)SR1 未満の 3.3

Cisco Call Manager (CCM) 4.0(2a)SR2c 未満の 4.0

Cisco Call Manager (CCM) 4.1(3)SR2 未満の 4.1

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2006-0368	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0368
National Vulnerability Database (NVD)
2	CVE-2006-0368	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-0368

ベンダー情報

No	Name	URL
関連リンク
1	18494	http://secunia.com/advisories/18494

Change Log

No	Changed Details	Date of change
0	[2014年03月11日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2006-0368

Summary	Cisco CallManager 3.2 and earlier, 3.3 before 3.3(5)SR1, 4.0 before 4.0(2a)SR2c, and 4.1 before 4.1(3)SR2 allow remote attackers to (1) cause a denial of service (CPU and memory consumption) via a large number of open TCP connections to port 2000 and (2) cause a denial of service (fill the Windows Service Manager communication queue) via a large number of TCP connections to port 2001, 2002, or 7727.
Publication Date	Jan. 23, 2006, 5:03 a.m.
Registration Date	Jan. 29, 2021, 3:30 p.m.
Last Update	July 20, 2017, 10:29 a.m.

Affected software configurations

Related information, measures and tools

No	URL	refsource	タグ
1	http://secunia.com/advisories/18494	SECUNIA	Patch Vendor Advisory
2	http://securityreason.com/securityalert/359	SREASON
3	http://securitytracker.com/id?1015503	SECTRACK
4	http://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmdos.shtml	CISCO
5	http://www.osvdb.org/22622	OSVDB
6	http://www.osvdb.org/22623	OSVDB
7	http://www.securityfocus.com/bid/16295	BID
8	http://www.vupen.com/english/advisories/2006/0249	VUPEN
9	https://exchange.xforce.ibmcloud.com/vulnerabilities/24180	XF

Common Vulnerabilities List