Podatność CVE-2017-6779


Publikacja: 2018-06-07

Opis:
Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration products that could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability occurs because a certain system log file does not have a maximum size restriction. Therefore, the file is allowed to consume the majority of available disk space on the appliance. An attacker could exploit this vulnerability by sending crafted remote connection requests to the appliance. Successful exploitation could allow the attacker to increase the size of a system log file so that it consumes most of the disk space. The lack of available disk space could lead to a DoS condition in which the application functions could operate abnormally, making the appliance unstable. This vulnerability affects the following Cisco Voice Operating System (VOS)-based products: Emergency Responder, Finesse, Hosted Collaboration Mediation Fulfillment, MediaSense, Prime License Manager, SocialMiner, Unified Communications Manager (UCM), Unified Communications Manager IM and Presence Service (IM&P - earlier releases were known as Cisco Unified Presence), Unified Communication Manager Session Management Edition (SME), Unified Contact Center Express (UCCx), Unified Intelligence Center (UIC), Unity Connection, Virtualized Voice Browser. This vulnerability also affects Prime Collaboration Assurance and Prime Collaboration Provisioning. Cisco Bug IDs: CSCvd10872, CSCvf64322, CSCvf64332, CSCvi29538, CSCvi29543, CSCvi29544, CSCvi29546, CSCvi29556, CSCvi29571, CSCvi31738, CSCvi31741, CSCvi31762, CSCvi31807, CSCvi31818, CSCvi31823.

Typ:

CWE-400

(Uncontrolled Resource Consumption ('Resource Exhaustion'))

Producent: Cisco
Produkt: Unified intelligence center 
Wersje: 9.5(1); 11.6;
Produkt: Finesse 
Wersje: 9.5(1); 11.5(1);
Produkt: Hosted collaboration mediation fulfillment 
Wersje: 9.5(1); 11.5;
Produkt: Mediasense 
Wersje:
9.5(1)
11.5(1)
11.5
Produkt: Unity connection 
Wersje:
9.5(0.9)tt0
12.0
11.5(1)su3
11.5(0.98)
11.5(0.199)
11.0_0
11.0(0.98000.332)
11.0(0.98000.225)
11.0
10.5_base
10.5(2.3009)
10.5(2)
10.5
Produkt: Unified contact center express 
Wersje: 9.0(2)su1.3; 11.6;
Produkt: Prime collaboration provisioning 
Wersje: 12.5;
Produkt: Prime collaboration assurance 
Wersje: 12.1; 11.6;
Produkt: Unified communications manager 
Wersje:
12.0
11.5.0
11.5(1.12000.1)
11.5(1.10000.6)
11.5(0.98000.486)
11.5(0.98000.480)
11.5
11.0(1.10000.10)
11.0(0.98000.225)
11.0
10.5(3.10000.9)
10.5(2.13900.9)
10.5(2.12901.1)
10.5(2.10000.5)
10.5(1.98991.13)
10.5(0.98000.88)
10.0_base
10.0(1)
10.0
Produkt: Emergency responder 
Wersje:
12.0
11.5(2.10000.5)
11.5(0.99833.5)
11.0(1.10000.10)
11.0
10.5(3.10000.9)
10.5(1a)
10.5(1.10000.5)
10.5
Produkt: Socialminer 
Wersje:
11.6(2)
11.6(1)
11.6
Produkt: Virtualized voice browser 
Wersje: 11.6;
Produkt: Prime license manager 
Wersje:
11.0(1)
11.0
10.5(2)
10.5(1)
10.5

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

Ogólna skala CVSS
Znaczenie
Łatwość wykorzystania
7.8/10
6.9/10
10/10
Wymagany dostęp
Złożoność ataku
Autoryzacja
Zdalny
Niska
Nie wymagana
Wpływ na poufność
Wpływ na integralność
Wpływ na dostępność
Brak
Brak
Pełny

 Referencje:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-diskdos

Podobne CVE
CVE-2019-16002
A vulnerability in the vManage web-based UI (web UI) of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CS...
CVE-2019-15973
A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected application...
CVE-2019-15968
A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified CDM) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management...
CVE-2019-15994
A vulnerability in the web-based management interface of Cisco Stealthwatch Enterprise could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected ...
CVE-2019-1982
A vulnerability in the HTTP traffic filtering component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass fi...
CVE-2019-1981
A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filteri...
CVE-2019-1980
A vulnerability in the protocol detection component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filter...
CVE-2019-1978
A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filteri...

Copyright 2019, cxsecurity.com

 

Back to Top