Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Off-by-one error in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM, formerly CallManager) before 20070711 allow remote attackers to execute arbitrary code via a crafted packet that triggers a heap-based buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Unified Communications Manager单字节溢出漏洞
Vulnerability Description
Cisco Unified Communications Manager(CUCM,之前被称为CallManager)是Cisco IP电话解决方案中的呼叫处理组件。 CUCM的CTLProvider.exe和RisDC.exe服务组件中分别存在一个单字节溢出漏洞,远程攻击者可能利用这些漏洞导致设备不可用或控制受影响的系统。 如果远程攻击者向默认运行于2444/TCP和2556/TCP端口的上述服务发送了恶意请求报文的话,就可能触发堆溢出,导致拒绝服务或完全入侵有漏洞的设备。
CVSS Information
N/A
Vulnerability Type
N/A