CVE-2006-5277

2007-07-15T21:30:00
ID CVE-2006-5277
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T17:51:00

Description

Off-by-one error in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM, formerly CallManager) before 20070711 allow remote attackers to execute arbitrary code via a crafted packet that triggers a heap-based buffer overflow.