CVE: CVE-2008-0027

Descrizione: Heap-based buffer overflow in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM) 4.2 before 4.2(3)SR3 and 4.3 before 4.3(1)SR1, and CallManager 4.0 and 4.1 before 4.1(3)SR5c, allows remote attackers to cause a denial of service or execute arbitrary code via a long request.

Vettore di attacco

Riferimenti esterni

• http://www.securityfocus.com/archive/1/486432/100/0/threaded
• http://www.vupen.com/english/advisories/2008/0171
• http://securityreason.com/securityalert/3551
• http://www.cisco.com/en/US/products/products_security_advisory09186a0080932c61.shtml
• http://dvlabs.tippingpoint.com/advisory/TPTI-08-02
• https://exchange.xforce.ibmcloud.com/vulnerabilities/39704
• http://www.securitytracker.com/id?1019223
• http://www.securityfocus.com/bid/27313
• http://secunia.com/advisories/28530

Prodotti interessati

• n/a – n/a

Relazioni con altri prodotti

Nessun prodotto trovato per il CVE: cve-2008-0027