Cisco Unified Communications Manager Multiple Heap Buffer Overflow Vulnerabilities

Cisco Unified Communications Manager Multiple Heap Buffer Overflow Vulnerabilities

Cisco Unified Communications Manager is prone to multiple heap-based buffer-overflow vulnerabilities because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized memory buffer.

An attacker can exploit these issues to execute arbitrary code within the context of the vulnerable application. Successful exploits may result in a complete compromise of affected servers. Failed exploit attempts will likely result in denial-of-service conditions.