Cisco Unified Communications Manager CTL Provider Heap Buffer Overflow Vulnerability

Bugtraq ID: 27313
Class: Design Error
CVE: CVE-2008-0027
Remote: Yes
Local: No
Published: Jan 16 2008 12:00AM
Updated: Jan 18 2008 11:18PM
Credit: Cody Pierce of TippingPoint DVLabs is credited with discovering this issue.
Vulnerable: Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.2(3)sr2
Cisco Unified Communications Manager 4.2 (3)SR2b
Cisco Unified CallManager 4.1(3)sr5
Cisco Unified CallManager 4.1(3)SR4
Cisco Unified CallManager 4.1 (3)SR5b
Cisco Unified CallManager 4.1
Cisco Unified CallManager 4.0
Not Vulnerable: Cisco Unified Communications Manager 6.0(1)
Cisco Unified Communications Manager 6.0 (1a)
Cisco Unified Communications Manager 6.0
Cisco Unified Communications Manager 5.1(2b)
Cisco Unified Communications Manager 5.1(2a)
Cisco Unified Communications Manager 5.1(2)
Cisco Unified Communications Manager 5.1(1)
Cisco Unified Communications Manager 4.3(1)sr.1
Cisco Unified Communications Manager 4.2 (3)SR3
Cisco Unified CallManager 6.0
Cisco Unified CallManager 5.1
Cisco Unified CallManager 5.0
Cisco Unified CallManager 4.1 (3)SR5c
Cisco Unified CallManager 3.3
Cisco CallManager Express 0


 

Privacy Statement
Copyright 2010, SecurityFocus