The call-handling implementation in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (port consumption) by improperly terminating SIP sessions, aka Bug ID CSCul28089.
2015-04-03T18:59:03.787
2025-04-12T10:46:40.837
Deferred
CVSSv2: 7.1 (HIGH)
AV:N/AC:M/Au:N/C:N/I:N/A:C
8.6
6.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | cisco | unity_connection | 8.5\(1\) | Yes |
| Application | cisco | unity_connection | 8.5\(1\)su1 | Yes |
| Application | cisco | unity_connection | 8.5\(1\)su2 | Yes |
| Application | cisco | unity_connection | 8.5\(1\)su3 | Yes |
| Application | cisco | unity_connection | 8.5\(1\)su4 | Yes |
| Application | cisco | unity_connection | 8.5\(1\)su5 | Yes |
| Application | cisco | unity_connection | 8.5\(1\)su6 | Yes |
| Application | cisco | unity_connection | 8.5_base | Yes |
| Application | cisco | unity_connection | 8.6\(1\) | Yes |
| Application | cisco | unity_connection | 8.6\(1a\) | Yes |
| Application | cisco | unity_connection | 8.6\(2\) | Yes |
| Application | cisco | unity_connection | 8.6\(2a\) | Yes |
| Application | cisco | unity_connection | 8.6\(2a\)su1 | Yes |
| Application | cisco | unity_connection | 8.6\(2a\)su2 | Yes |
| Application | cisco | unity_connection | 8.6\(2a\)su3 | Yes |
| Application | cisco | unity_connection | 8.6_base | Yes |
| Application | cisco | unity_connection | 9.0\(1\) | Yes |
| Application | cisco | unity_connection | 9.1\(1\) | Yes |
| Application | cisco | unity_connection | 9.1\(2\) | Yes |
| Application | cisco | unity_connection | 10.0.0 | Yes |
| Application | cisco | unity_connection | 10.0.5 | Yes |