Total vulnerabilities in the database
Off-by-one error in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM, formerly CallManager) before 20070711 allow remote attackers to execute arbitrary code via a crafted packet that triggers a heap-based buffer overflow.
| Software | From | Fixed in |
|---|---|---|
| cisco / unified_callmanager | 5.0 | 5.0.x |
| cisco / unified_callmanager | 3.3 | 3.3\(5\)sr2.x |
| cisco / unified_callmanager | 4.1 | 4.1\(3\)sr4.x |
| cisco / unified_callmanager | 4.2 | 4.2\(3\)sr1.x |
| cisco / unified_communications_manager | 4.3 | 4.3\(1\).x |
| cisco / unified_communications_manager | 5.1 | 5.1\(1\).x |