Cisco VOS/UCM/IM&P/SME/UCCx/UIC Log File Connection Request 拒绝服务漏洞

admin

0
文章

0
评论

2023-12-02 04:32:38 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

Cisco VOS/UCM/IM&P/SME/UCCx/UIC Log File Connection Request 拒绝服务漏洞

CVE编号

CVE-2017-6779

利用情况

暂无

补丁情况

N/A

披露时间

2018-06-08

漏洞描述

Cisco Emergency Responder等都是美国思科（Cisco）公司的产品。Cisco Emergency Responder是一套IP通信系统中的应急呼叫软件。Finesse是一套下一代客户协作服务解决方案。多款Cisco产品中本地文件的管理（用于对系统日志文件的管理）存在资源管理错误漏洞，该漏洞源于程序没有限制系统日志文件的最大值。远程攻击者可通过向设备发送远程连接请求利用该漏洞造成磁盘大量占用，造成拒绝服务。

解决建议

目前厂商已发布升级补丁以修复漏洞，补丁获取链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-diskdos

参考链接
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-s...

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	cisco	emergency_responder	*	From (including) 10.5	Up to (excluding) 10.5\(1a\)
	运行在以下环境
	应用	cisco	emergency_responder	*	From (including) 11.0	Up to (excluding) 11.5\(4\)
	运行在以下环境
	应用	cisco	emergency_responder	*	From (including) 12.0	Up to (excluding) 12.0su1
	运行在以下环境
	应用	cisco	emergency_responder	11.0(1.10000.10)	-
	运行在以下环境
	应用	cisco	finesse	*	From (including) 11.5	Up to (excluding) 11.5\(3\)
	运行在以下环境
	应用	cisco	finesse	9.5(1)	-
	运行在以下环境
	应用	cisco	hosted_collaboration_mediation_fulfillment	*	From (including) 11.5	Up to (excluding) 11.5\(3\)
	运行在以下环境
	应用	cisco	hosted_collaboration_mediation_fulfillment	9.5(1)	-
	运行在以下环境
	应用	cisco	mediasense	*	From (including) 11.5	Up to (excluding) 11.5su2
	运行在以下环境
	应用	cisco	mediasense	9.5(1)	-
	运行在以下环境
	应用	cisco	prime_collaboration_assurance	*	From (including) 11.6	Up to (excluding) 11.6_es16
	运行在以下环境
	应用	cisco	prime_collaboration_assurance	*	From (including) 12.1	Up to (excluding) 12.1_es2
	运行在以下环境
	应用	cisco	prime_collaboration_provisioning	12.5	-
	运行在以下环境
	应用	cisco	prime_license_manager	*	From (including) 10.5	Up to (excluding) 10.5.2
	运行在以下环境
	应用	cisco	prime_license_manager	*	From (including) 11.0	Up to (excluding) 11.5\(1\)su5
	运行在以下环境
	应用	cisco	socialminer	*	From (including) 11.6	Up to (excluding) 11.6.1
	运行在以下环境
	应用	cisco	unified_communications_manager	*	From (including) 10.0	Up to (excluding) 10.5\(2\)su5
	运行在以下环境
	应用	cisco	unified_communications_manager	*	From (including) 11.0	Up to (excluding) 11.0\(1a\)su4
	运行在以下环境
	应用	cisco	unified_communications_manager	*	From (including) 11.5	Up to (excluding) 11.5\(1\)su3
	运行在以下环境
	应用	cisco	unified_communications_manager	10.5(2.10000.5)	-
	运行在以下环境
	应用	cisco	unified_communications_manager	11.0(1.10000.10)	-
	运行在以下环境
	应用	cisco	unified_communications_manager	11.5(1.10000.6)	-
	运行在以下环境
	应用	cisco	unified_communications_manager	12.0	-
	运行在以下环境
	应用	cisco	unified_contact_center_express	*	From (including) 11.6	Up to (excluding) 11.6\(1\)
	运行在以下环境
	应用	cisco	unified_contact_center_express	9.0(2)su1.3	-
	运行在以下环境
	应用	cisco	unity_connection	*	From (including) 10.5	Up to (excluding) 10.5su5
	运行在以下环境
	应用	cisco	unity_connection	*	From (including) 11.0	Up to (excluding) 11.5.1su3
	运行在以下环境
	应用	cisco	unity_connection	12.0	-
	运行在以下环境
	应用	cisco	unity_connection	9.5(0.9)tt0	-
	运行在以下环境
	应用	cisco	virtualized_voice_browser	*	From (including) 11.6	Up to (excluding) 11.6\(1\)