Guest

Preview Tool

Cisco Bug: CSCsz76313 - libpng library vulnerable to CVE-2009-0040

Last Modified

Jul 06, 2017

Products (1)

  • Cisco Unified Communications Manager (CallManager)

Known Affected Releases

6.1(3)

Description (partial)

Symptom:

Cisco Unified Communications Manager 6.1(3) and earlier contains a version of the libpng  library that is
vulnerable to CVE-2009-0040. This library was removed CUCM 7.0.

Condition:

There is no known exploit vector for this vulnerability affecting CUCM, but users are encouraged to
upgrade to a fixed version of CUCM.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.