A vulnerability in the Bulk Administration Tool (BAT) for Cisco Unity Connection could allow an authenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software does not restrict the maximum size of certain files that can be written to disk. An attacker who has valid administrator credentials for an affected system could exploit this vulnerability by sending a crafted, remote connection request to an affected system. A successful exploit could allow the attacker to write a file that consumes most of the available disk space on the system, causing application functions to operate abnormally and leading to a DoS condition.
Metrics
Affected Vendors & Products
References
History
Tue, 26 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2018-10-05T14:00:00Z
Updated: 2024-11-26T14:33:14.989Z
Reserved: 2018-08-17T00:00:00
Link: CVE-2018-15396
Vulnrichment
Updated: 2024-08-05T09:54:03.441Z
NVD
Status : Modified
Published: 2018-10-05T14:29:08.013
Modified: 2024-11-21T03:50:41.920
Link: CVE-2018-15396
Redhat
No data.