Lucene search

[email protected]CVE-2005-2244

HistoryJul 12, 2005 - 4:00 a.m.

CVE-2005-2244

2005-07-1204:00:00

[email protected]

web.nvd.nist.gov

cisco

callmanager

aupair.exe

remote code execution

buffer overflow

cve-2005-2244

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.9 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.7%

JSON

The aupair service (aupair.exe) in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to execute arbitrary code or corrupt memory via crafted packets that trigger a memory allocation failure and lead to a buffer overflow.

Affected configurations

NVD

Node

ciscocall_managerMatch3.2

ciscocall_managerMatch3.3

ciscocall_managerMatch4.0

ciscocall_managerMatch4.1

CPENameOperatorVersion
cisco:call_managercisco call managereq3.2
cisco:call_managercisco call managereq3.3
cisco:call_managercisco call managereq4.0
cisco:call_managercisco call managereq4.1

CPE	Name	Operator	Version
cisco:call_manager	cisco call manager	eq	3.2
cisco:call_manager	cisco call manager	eq	3.3
cisco:call_manager	cisco call manager	eq	4.0
cisco:call_manager	cisco call manager	eq	4.1

References

www.cisco.com/warp/public/707/cisco-sa-20050712-ccm.shtml

www.securityfocus.com/bid/14255

exchange.xforce.ibmcloud.com/vulnerabilities/19053

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.9 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.7%

JSON

Related for CVE-2005-2244

nvd1 cvelist1 cisco1