Secunia

A vulnerability and a security issue have been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to bypass certain security restrictions or to cause a DoS (Denial of Service).

1) An unspecified error in the Computer Telephony Integration (CTI) Manager service can be exploited to cause a DoS by sending a specially crafted packet to port 2748/TCP.

2) A security issue exists in the Real-Time Information Server (RIS) Data Collector service, which can be exploited to bypass authentication checks and disclose e.g. information about performance statistics, user names, and configured IP phones.

The vulnerability and the security issue affect the following products and versions:
* Cisco Unified CallManager 4.1 versions
* Cisco Unified Communications Manager 4.2 versions prior to 4.2(3)SR4
* Cisco Unified Communications Manager 4.3 versions prior to 4.3(2)SR1
* Cisco Unified Communications Manager 5.x versions prior to 5.1(3c)
* Cisco Unified Communications Manager 6.x versions prior to 6.1(2)

Solution
Cisco Unified Communications Manager (CUCM) version 4.1:
Further details available in Customer Area

Provided and/or discovered by
VoIPshield

Changelog
Further details available in Customer Area

Original Advisory
Cisco:
http://www.cisco.com/warp/public/707/cisco-sa-20080625-cucm.shtml

VoIPshield:
http://www.voipshield.com/research-details.php?id=64
http://www.voipshield.com/research-details.php?id=65
http://www.voipshield.com/research-details.php?id=66
http://www.voipshield.com/research-details.php?id=67
http://www.voipshield.com/research-details.php?id=68
http://www.voipshield.com/research-details.php?id=69
http://www.voipshield.com/research-details.php?id=70
http://www.voipshield.com/research-details.php?id=71
http://www.voipshield.com/research-details.php?id=72
http://www.voipshield.com/research-details.php?id=73
http://www.voipshield.com/research-details.php?id=74
http://www.voipshield.com/research-details.php?id=75

Deep Links
Links available in Customer Area