CVE-2006-4032

EPSS 0.68%
Veröffentlicht 09.08.2006 22:04:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in Cisco IOS CallManager Express (CME) allows remote attackers to gain sensitive information (user names) from the Session Initiation Protocol (SIP) user directory via certain SIP messages, aka bug CSCse92417.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Callmanager Express Version3.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.68%	0.709

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/21335

Vendor Advisory

http://securitytracker.com/id?1016627

http://www.blackhat.com/html/bh-usa-06/bh-usa-06-speakers.html#Endler

http://www.cisco.com/warp/public/707/cisco-sr-20060802-sip.shtml

Vendor Advisory

http://www.osvdb.org/27760

http://www.securityfocus.com/bid/19309

http://www.vupen.com/english/advisories/2006/3126

https://exchange.xforce.ibmcloud.com/vulnerabilities/28185

https://nvd.nist.gov/vuln/detail/CVE-2006-4032

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-4032

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-4032

EUVD