Heap-based Buffer Overflow in Cisco Unified Communications Manager
CVE-2008-0027

Currently unrated

Key Information:

Vendor

Cisco
Status
Unified Communications Manager
Unified Callmanager
Vendor
CVE Published:
17 January 2008

What is CVE-2008-0027?

A heap-based buffer overflow vulnerability exists in the Certificate Trust List (CTL) Provider service of Cisco Unified Communications Manager. This flaw allows remote attackers to exploit the system through crafted requests that can lead to a denial of service or arbitrary code execution. The vulnerability affects multiple versions of CUCM and CallManager prior to specified updates, underscoring the importance of timely patches and updates to safeguard against potential exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/archive/1/486432/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.vupen.com/english/advisories/2008/0171
vdb-entryx_refsource_VUPEN
http://securityreason.com/securityalert/3551
third-party-advisoryx_refsource_SREASON

EPSS Score

35% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.