Heap-based buffer overflow in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM) 4.2 prior to 4.2(3)SR3 and 4.3 prior to 4.3(1)SR1, and CallManager 4.0 and 4.1 prior to 4.1(3)SR5c, allows remote malicious users to cause a denial of service or execute arbitrary code via a long request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco unified callmanager 4.1 |
||
cisco unified callmanager 4.0 |
||
cisco unified communications manager 4.2.3sr2b |
||
cisco unified communications manager 4.3 |
||
cisco unified callmanager 4.1\\(3\\)sr4 |
||
cisco unified callmanager 4.1\\(3\\)sr5 |
||
cisco unified callmanager 4.1\\(3\\)sr5b |
||
cisco unified communications manager 4.2 |
||
cisco unified communications manager 4.2.3sr2 |