CVE-2012-0361 Information

Description

The sccp-protocol component in Cisco IP Communicator (CIPC) 7.0 through 8.6 does not limit the rate of SCCP messages to Cisco Unified Communications Manager (CUCM) which allows remote attackers to cause a denial of service via vectors that trigger (1) on hook and (2) off hook messages as demonstrated by a Plantronics headset aka Bug ID CSCti40315.

Reference

http://www.cisco.com/en/US/docs/voice_ip_comm/cipc/8_5/english/release_notes/CIPC8x_RN.html http://www.securitytracker.com/id?1027013