Cisco Unified CallManager SIP Request Hostname Overflow

2006-07-12T05:04:05
ID OSVDB:27162
Type osvdb
Reporter OSVDB
Modified 2006-07-12T05:04:05

Description

Vulnerability Description

A remote overflow exists in Cisco Unified CallManager. The product fails to validate SIP requests resulting in a buffer overflow. With a specially crafted request which includes an excessively long hostname, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Upgrade to version 5.0(4) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in Cisco Unified CallManager. The product fails to validate SIP requests resulting in a buffer overflow. With a specially crafted request which includes an excessively long hostname, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor Specific Advisory URL Security Tracker: 1016475 Secunia Advisory ID:21030 Related OSVDB ID: 27161 Related OSVDB ID: 27160 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0149.html Keyword: CSCsd96542 ISS X-Force ID: 27691 FrSIRT Advisory: ADV-2006-2774 CVE-2006-3594