Cisco IP-telephony software open to DOS attacks

Cisco finds flaws in Unified Communications Manager

Cisco this week has identified vulnerabilities in its Unified Communications Manager -- formerly CallManager -- IP-telephony software that could cause denial of service or allow the execution of arbitrary code.

UCM contains two overflow conditions that could let a remote or unauthenticated user initiate a DOS condition or launch inadvertent programs. A workaround exists for one of the vulnerabilities, Cisco states in an advisory on its Web site and on other sites that provide notification of network-equipment security vulnerabilities.

The first overflow condition affects the product's Certificate Trust List (CTL) Provider service. CTL Provider listens on TCP Port 2444 by default, but the port is user configurable.

The second overflow condition affects UCM's Real-Time Information Server (RIS) Data Collector service. RIS Data Collector listens on TCP Port 2556 by default, but the port is user configurable.

The vulnerable products are:

-- Unified CallManager 3.3 versions before 3.3(5)SR3

-- Unified CallManager 4.1 versions before 4.1(3)SR5

-- Unified CallManager 4.2 versions before 4.2(3)SR2

-- UCM 4.3 versions before 4.3(1)SR1

-- Unified CallManager 5.0 and UCM 5.1 versions before 5.1(2)

Unified CallManager versions 4.2, 4.3, 5.1 and 6.0 have been renamed as UCM. UCM versions 3.3, 4.0, 4.1 and 5.0 retain the Unified CallManager name.

UCM Version 6.0 and CallManager Express are not affected by these vulnerabilities, Cisco states in the advisory.

Cisco says it is not aware of any malicious use of the vulnerabilities. They were reported to Cisco by the IBM Internet Security Systems X-Force team, the company says.

Users can work around the CTL Provider vulnerability by disabling it if it is not needed, Cisco says. Access to CTL Provider usually is required only during the initial configuration of UCM authentication and encryption features, the company says.

Filtering traffic to affected UCM systems on screening devices can also be used to mitigate both vulnerabilities, Cisco says. It also is possible to change the default ports of CTL Provider and RIS Data Collector, then employ filtering, the company advises.

Infrastructure Access Control Lists can also serve as a workaround for this specific vulnerability, Cisco says.

The CTL Provider vulnerability is corrected in UCM versions 4.1(3)SR5, 4.2(3)SR2, 4.3(1)SR1 and 5.1(2). The RIS Data Collector vulnerability is corrected in UCM versions 3.3(5)SR2b, 4.1(3)SR5, 4.2(3)SR2, 4.3(1)SR1 and 5.1(2).

Cisco says it will make free software available to address the vulnerabilities for affected customers.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Jim Duffy

Network World
Show Comments

Cool Tech

Toys for Boys

Skywatcher Dobsonian 8″ Collapsible Telescope

Learn more >

Family Friendly

Whodunnit™ Duo-Scope MFL-007 Microscope Kit

Learn more >

Stocking Stuffer

Logitech Ultimate Ears Wonderboom 2 Bluetooth Speaker

Learn more >

Christmas Gift Guide

Click for more ›

Brand Post

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Tom Sellers

MSI P65

This smart laptop was enjoyable to use and great to work on – creating content was super simple.

Lolita Wang

MSI GT76

It really doesn’t get more “gaming laptop” than this.

Jack Jeffries

MSI GS75

As the Maserati or BMW of laptops, it would fit perfectly in the hands of a professional needing firepower under the hood, sophistication and class on the surface, and gaming prowess (sports mode if you will) in between.

Taylor Carr

MSI PS63

The MSI PS63 is an amazing laptop and I would definitely consider buying one in the future.

Christopher Low

Brother RJ-4230B

This small mobile printer is exactly what I need for invoicing and other jobs such as sending fellow tradesman details or step-by-step instructions that I can easily print off from my phone or the Web.

Aysha Strobbe

Microsoft Office 365/HP Spectre x360

Microsoft Office continues to make a student’s life that little bit easier by offering reliable, easy to use, time-saving functionality, while continuing to develop new features that further enhance what is already a formidable collection of applications

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?