{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Cisco Unified CallManager 5.0 versions ant\u00e9rieures \u00e0 5.0(4a)SU1 ;","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified CallManager 4.2 versions ant\u00e9rieures \u00e0 4.2(3)SR1 ;","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified Presence Server 1.0 versions ant\u00e9rieures \u00e0 1.0(3).","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified CallManager 3.3 versions ant\u00e9rieures \u00e0 3.3(5)SR2a ;","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified CallManager 4.1 versions ant\u00e9rieures \u00e0 4.1(3)SR4 ;","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nTrois vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es sur Cisco Unified CallManager\net Cisco Unified Presence Server :\n\n-   l'envoi de paquets sp\u00e9cialement con\u00e7us aux ports du service SCCP par\n    un attaquant sur le r\u00e9seau local peut causer un d\u00e9ni de service sur\n    le syst\u00e8me CallManager ;\n-   l'envoi d'un nombre important de paquets de type ICMP peut causer\n    l'arr\u00eat de certains services CUCM / CUPS, donc un d\u00e9ni de service\n    sur les services de VoIP ;\n-   l'envoi d'un paquet UDP sp\u00e9cialement con\u00e7u sur le port du IPSec\n    Manager Service de CUCM / CUPS peut causer l'arr\u00eat de certains\n    services de VoIP.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Cisco ID 82327 du 28 mars 2007 :","url":"http://www.cisco.com/warp/public/707/cisco-sa-20070328-voip.shtml"}],"reference":"CERTA-2007-AVI-150","revisions":[{"description":"version initiale.","revision_date":"2007-03-29T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"}],"summary":"Trois vuln\u00e9rabilit\u00e9s sur Cisco Unified CallManager et Cisco Unified\nPresence Server permettent \u00e0 une personne malintentionn\u00e9e d'effectuer un\nd\u00e9ni de service \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9s dans Cisco Unified CallManager et Presence Server","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco 82327 du 28 mars 2007","url":null}]}