Description
Off-by-one error in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM, formerly CallManager) before 20070711 allow remote attackers to execute arbitrary code via a crafted packet that triggers a heap-based buffer overflow.
Affected products
- Cisco / unified_callmanager3.3 – 3.3\(5\)sr2
- Cisco / unified_callmanager5.0 – 5.0
- Cisco / unified_communications_manager4.3 – 4.3\(1\)
References
- MISChttp://www.osvdb.org/36122
- VENDOR_ADVISORYhttp://www.cisco.com/warp/public/707/cisco-sa-20070711-cucm.shtml
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/2512
- MISChttp://www.iss.net/threats/270.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/26043
- MISChttp://www.securityfocus.com/bid/24868
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/31437
- MISChttp://securitytracker.com/id?1018369