Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2006-0368

CVE information

Published

16 years ago

Last Modified

5 years ago

CVSSv2.0 Severity

High

Impact Analysis

Description

Cisco CallManager 3.2 and earlier, 3.3 before 3.3(5)SR1, 4.0 before 4.0(2a)SR2c, and 4.1 before 4.1(3)SR2 allow remote attackers to (1) cause a denial of service (CPU and memory consumption) via a large number of open TCP connections to port 2000 and (2) cause a denial of service (fill the Windows Service Manager communication queue) via a large number of TCP connections to port 2001, 2002, or 7727..

CVSSv2.0 Score

Severity
High
Base Score
7.8/10
Exploit Score
10/10
Access Vector
Network
Access Complexity
Low
Authentication Required
None
Impact Score
6.9/10
Confidentiality Impact
None
Availability Impact
Complete
Integrity Impact
None

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:h:cisco:call_manager:4.1\(3\)es07:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.1\(3a\):*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.1\(3\)es32:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:1.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.3\(5\):*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.1\(3\)sr1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.3\(3\)es61:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.3\(4\)es25:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:*:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.2:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.3:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.3\(3\):*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.0\(2a\)es62:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.0\(2a\)sr2b:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.1\(2\):*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.0\(2a\)es40:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.1:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:3.3\(5\)es30:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:2.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.1\(2\)es33:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:h:cisco:call_manager:4.1\(2\)es55:*:*:*:*:*:*:*
  Yes
- -