The aupair service (aupair.exe) in Cisco CallManager (CCM) 3.2 and previous versions, 3.3 prior to 3.3(5), 4.0 prior to 4.0(2a)SR2b, and 4.1 4.1 prior to 4.1(3)SR1 allows remote malicious users to execute arbitrary code or corrupt memory via crafted packets that trigger a memory allocation failure and lead to a buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco call manager 3.3 |
||
cisco call manager 4.0 |
||
cisco call manager 3.2 |
||
cisco call manager 4.1 |