Cisco Intercompany Media Engine SAF报文处理拒绝服务漏洞

漏洞介绍

Cisco Intercompany Media Engine (Cisco IME)提供了通过整合端到端技术和现有PSTN基础架构建立企业间直接IP连接的技术。

Cisco Intercompany Media Engine (Cisco IME)的Service Advertisement Framework (SAF)中存在拒绝服务漏洞。未经认证的攻击者可通过发送到受影响设备的特制SAF报文重新加载受影响设备，拒绝服务合法用户。

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接：

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f533.shtml

来源: CISCO

名称: 20110824 Denial of Service Vulnerabilities in Cisco Intercompany Media Engine

链接：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f533.shtml
来源: CISCO

名称: 20110824 Cisco Unified Communications Manager Denial of Service Vulnerabilities

链接：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8f531.shtml
来源:SECUNIA

名称:45738

链接：http://secunia.com/advisories/45738