logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2008-0027

Description

Heap-based buffer overflow in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM) 4.2 before 4.2(3)SR3 and 4.3 before 4.3(1)SR1, and CallManager 4.0 and 4.1 before 4.1(3)SR5c, allows remote attackers to cause a denial of service or execute arbitrary code via a long request.


Affected Software


CPE Name Name Version
cisco:unified_callmanager cisco unified callmanager 4.1
cisco:unified_callmanager cisco unified callmanager 4.0
cisco:unified_communications_manager cisco unified communications manager 4.2.3sr2b
cisco:unified_communications_manager cisco unified communications manager 4.3
cisco:unified_callmanager cisco unified callmanager 4.1\(3\)sr4
cisco:unified_callmanager cisco unified callmanager 4.1\(3\)sr5
cisco:unified_callmanager cisco unified callmanager 4.1\(3\)sr5b
cisco:unified_communications_manager cisco unified communications manager 4.2
cisco:unified_communications_manager cisco unified communications manager 4.2.3sr2

Related