CVE-2007-0198

The JTapi Gateway process in Cisco Unified Contact Center Enterprise, Unified Contact Center Hosted, IP Contact Center Enterprise, and Cisco IP Contact Center Hosted 5.0 through 7.1 allows remote attackers to cause a denial of service (repeated process restart) via a certain TCP session on the JTapi server port.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://osvdb.org/32682
http://secunia.com/advisories/23710
http://securitytracker.com/id?1017499
http://www.cisco.com/warp/public/707/cisco-sa-20070110-jtapi.shtml	Patch Vendor Advisory
http://www.securityfocus.com/bid/21988
http://www.vupen.com/english/advisories/2007/0138
http://osvdb.org/32682
http://secunia.com/advisories/23710
http://securitytracker.com/id?1017499
http://www.cisco.com/warp/public/707/cisco-sa-20070110-jtapi.shtml	Patch Vendor Advisory
http://www.securityfocus.com/bid/21988
http://www.vupen.com/english/advisories/2007/0138

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:cisco:ip_contact_center_enterprise::::::::
	cpe:2.3:a:cisco:ip_contact_center_enterprise:5.0:::::::*
	cpe:2.3:a:cisco:ip_contact_center_hosted::::::::
	cpe:2.3:a:cisco:ip_contact_center_hosted:5.0:::::::*
	cpe:2.3:a:cisco:unified_contact_center_enterprise::::::::
	cpe:2.3:a:cisco:unified_contact_center_enterprise:5.0:::::::*
	cpe:2.3:a:cisco:unified_contact_center_hosted::::::::
	cpe:2.3:a:cisco:unified_contact_center_hosted:5.0:::::::*

History

No history.

Information

Published : 2007-01-11 11:28

Updated : 2025-04-09 00:30

NVD link : CVE-2007-0198

Mitre link : CVE-2007-0198

CVE.ORG link : CVE-2007-0198

JSON object : View

Products Affected

cisco

ip_contact_center_hosted
unified_contact_center_hosted
ip_contact_center_enterprise
unified_contact_center_enterprise

CWE

NVD-CWE-Other

{"id": "CVE-2007-0198", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-01-11T11:28:00.000", "references": [{"url": "http://osvdb.org/32682", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/23710", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017499", "source": "cve@mitre.org"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20070110-jtapi.shtml", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/21988", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/0138", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/32682", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/23710", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1017499", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20070110-jtapi.shtml", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/21988", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/0138", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The JTapi Gateway process in Cisco Unified Contact Center Enterprise, Unified Contact Center Hosted, IP Contact Center Enterprise, and Cisco IP Contact Center Hosted 5.0 through 7.1 allows remote attackers to cause a denial of service (repeated process restart) via a certain TCP session on the JTapi server port."}, {"lang": "es", "value": "El proceso JTapi Gateway en Cisco Unified Contact Center Enterprise, Unified Contact Center Hosted, IP Contact Center Enterprise, y Cisco IP Contact Center Hosted 5.0 hasta 7.1 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (repetici\u00f3n de reinicio de proceso) mediante sesiones concretas TCP en el puerto de servidor JTapi."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:ip_contact_center_enterprise:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2E989E5-7AD3-4C6E-BEDA-464045DB5A81", "versionEndIncluding": "7.1"}, {"criteria": "cpe:2.3:a:cisco:ip_contact_center_enterprise:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94B4C151-5A50-46B8-9948-54583AC1D030"}, {"criteria": "cpe:2.3:a:cisco:ip_contact_center_hosted:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09F66BA1-6929-45F5-8ABE-5F1153EFB3DB", "versionEndIncluding": "7.1"}, {"criteria": "cpe:2.3:a:cisco:ip_contact_center_hosted:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8CAB3CA-4299-4EC1-856E-C6126326B5B4"}, {"criteria": "cpe:2.3:a:cisco:unified_contact_center_enterprise:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "434186D4-106C-4A3B-A180-9BF686FA3742", "versionEndIncluding": "7.1"}, {"criteria": "cpe:2.3:a:cisco:unified_contact_center_enterprise:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9868B02F-E7C9-4223-A84C-3A054025B6A6"}, {"criteria": "cpe:2.3:a:cisco:unified_contact_center_hosted:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F646413-0E7D-416C-9030-37861EA2BC46", "versionEndIncluding": "7.1"}, {"criteria": "cpe:2.3:a:cisco:unified_contact_center_hosted:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8AF4B6F-D293-4AE9-A976-53BE3CD24919"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}