CVE-2008-1746

high

Description

The SNMP Trap Agent service in Cisco Unified Communications Manager (CUCM) 4.1 before 4.1(3)SR6, 4.2 before 4.2(3)SR3, 4.3 before 4.3(2), 5.x before 5.1(3), and 6.x before 6.1(1) allows remote attackers to cause a denial of service (core dump and service restart) via a series of malformed UDP packets, as demonstrated by the IP Stack Integrity Checker (ISIC), aka Bug ID CSCsj24113.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/42420

http://www.vupen.com/english/advisories/2008/1533

http://www.securityfocus.com/bid/29221

http://www.cisco.com/en/US/products/products_security_advisory09186a0080995688.shtml

http://securitytracker.com/id?1020022

http://secunia.com/advisories/30238

Details

Source: Mitre, NVD

Published: 2008-05-16

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.01918