Sign-up

ID

VAR-201311-0304


CVE

CVE-2013-5564


TITLE

Cisco Prime Central for Hosted Collaboration Solution of Impact Service disruption at the server (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2013-005012

DESCRIPTION

The Java process in the Impact server in Cisco Prime Central for Hosted Collaboration Solution (HCS) allows remote attackers to cause a denial of service (process crash) via a flood of TCP packets, aka Bug ID CSCug57345. Attackers can exploit this issue to crash the Java process, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCug57345. The platform provides functions such as secure access authentication and real-time fault analysis

Trust: 1.98

sources: NVD: CVE-2013-5564 // JVNDB: JVNDB-2013-005012 // BID: 63490 // VULHUB: VHN-65566

AFFECTED PRODUCTS

vendor:ciscomodel:prime central for hosted collaboration solutionscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:prime central for hcs assurancescope:lteversion:9.2.1

Trust: 0.8

sources: JVNDB: JVNDB-2013-005012 // CNNVD: CNNVD-201311-029 // NVD: CVE-2013-5564

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2013-5564
value: MEDIUM

Trust: 1.0

NVD: CVE-2013-5564
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201311-029
value: MEDIUM

Trust: 0.6

VULHUB: VHN-65566
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2013-5564
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-65566
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-65566 // JVNDB: JVNDB-2013-005012 // CNNVD: CNNVD-201311-029 // NVD: CVE-2013-5564

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-65566 // JVNDB: JVNDB-2013-005012 // NVD: CVE-2013-5564

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201311-029

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201311-029

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-005012

PATCH
title:Cisco Prime Central for Hosted Collaboration Solution Denial of Service Vulnerabilityurl:http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5564
Trust: 0.8
title:31608url:http://tools.cisco.com/security/center/viewAlert.x?alertId=31608
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2013-005012

EXTERNAL IDS
db:NVDid:CVE-2013-5564
Trust: 2.8
db:JVNDBid:JVNDB-2013-005012
Trust: 0.8
db:CNNVDid:CNNVD-201311-029
Trust: 0.7
db:CISCOid:20131101 CISCO PRIME CENTRAL FOR HOSTED COLLABORATION SOLUTION DENIAL OF SERVICE VULNERABILITY
Trust: 0.6
db:BIDid:63490
Trust: 0.4
db:VULHUBid:VHN-65566
Trust: 0.1
sources:
            
            
            VULHUB: VHN-65566 // 
            
            
            
            BID: 63490 // 
            
            
            
            JVNDB: JVNDB-2013-005012 // 
            
            
            
            CNNVD: CNNVD-201311-029 // 
            
            
            
            NVD: CVE-2013-5564

REFERENCES
url:http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-5564
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-5564
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-5564
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-65566 // 
            
            
            
            BID: 63490 // 
            
            
            
            JVNDB: JVNDB-2013-005012 // 
            
            
            
            CNNVD: CNNVD-201311-029 // 
            
            
            
            NVD: CVE-2013-5564

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 63490

SOURCES
db:VULHUBid:VHN-65566
db:BIDid:63490
db:JVNDBid:JVNDB-2013-005012
db:CNNVDid:CNNVD-201311-029
db:NVDid:CVE-2013-5564

LAST UPDATE DATE
2025-04-11T23:10:35.064000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-65566date:2013-11-06T00:00:00
db:BIDid:63490date:2013-11-06T00:22:00
db:JVNDBid:JVNDB-2013-005012date:2013-11-06T00:00:00
db:CNNVDid:CNNVD-201311-029date:2013-11-05T00:00:00
db:NVDid:CVE-2013-5564date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:VULHUBid:VHN-65566date:2013-11-04T00:00:00
db:BIDid:63490date:2013-11-01T00:00:00
db:JVNDBid:JVNDB-2013-005012date:2013-11-06T00:00:00
db:CNNVDid:CNNVD-201311-029date:2013-11-05T00:00:00
db:NVDid:CVE-2013-5564date:2013-11-04T16:55:05.187