nCircle.com >> nCircle Blog >> Sync

« On brand damage, stock prices, and America’s most trustworthy companies | Main | Patch, upgrade, hotfix -- its all risk »

Cisco Call Manager 'Ping of Death'?

I'm reading the new Cisco vulns released today regarding Cisco Unified Call Manager. Apparently one can cause a DoS by sending an ICMP flood.

* ICMP Echo Request Flood Denial of Service

By sending a large amount of ICMP Echo Requests (Ping) to a CUCM or CUPS system, it may be possible to cause various CUCM / CUPS services to crash resulting in a denial of service affecting voice services. CUCM versions 3.x and 4.x are not affected by this vulnerability, only CUCM version 5.0 is affected. The CUCM issue is documented in Cisco Bug ID CSCsf12698. The CUPS issue is documented in Cisco Bug ID CSCsg60930.

I interpret this as the classic "ping of death" we used to enjoy in early versions of Windows. One would think this would have been solved already.

Anybody try it yet?

Posted by Andrew Storms on March 28, 2007 3:25 PM |

TrackBack

TrackBack URL for this entry:
http://blog.ncircle.com/cgi-bin/mt-tb.cgi/192

Comments (3)

joat:

Nah. This is just a standard ping flood. A ping of death would involve a single oversized packet.

Posted by joat | March 28, 2007 3:49 PM

Posted on March 28, 2007 15:49

LonerVamp:

I think the classic ping of death was a malformed ICMP packet that cause Windows to freak out. This Cisco attack sounds more like a full flood that overloads the resources somewhere and causes it to just stop and or crash.

Eh, same effect. :)

Posted by LonerVamp | March 30, 2007 9:01 AM

Posted on March 30, 2007 09:01

PbX:

Just sounds like a DoS attack that can be done on most systems if you know the port and right inveral.

Posted by PbX | April 3, 2007 5:22 AM

Posted on April 3, 2007 05:22

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

Verification (needed to reduce spam):

Bio

Blog: Sync
Author: Andrew Storms

As nCircle's Director of Security Operations, Andrew Storms is responsible for setting and enforcing the company's security compliance programs as well as overseeing day-to-day operations for the Information Technology department. He is a Certified Information Systems Security Professional (CISSP).

About

This page contains a single entry from the blog posted on March 28, 2007 3:25 PM.

The previous post in this blog was On brand damage, stock prices, and America’s most trustworthy companies.

The next post in this blog is Patch, upgrade, hotfix -- its all risk.

Many more can be found on the main index page or by looking through the archives.

Search


Subscribe to this blog's feed
[What is this?]