CVE-2008-0027: CVE-2008-0027

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-0027

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Heap-based buffer overflow in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM) 4.2 before 4.2(3)SR3 and 4.3 before 4.3(1)SR1, and CallManager 4.0 and 4.1 before 4.1(3)SR5c, allows remote attackers to cause a denial of service or execute arbitrary code via a long request.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cisco Unified Communications Manager CTL Provider远程堆溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cisco Unified Communications Manager(CUCM，之前被称为CallManager)是Cisco IP电话解决方案中的呼叫处理组件。 CUCM中默认绑定在TCP/2444端口上的CTL Provider服务(CTLProvider.exe)存在堆溢出漏洞，远程攻击者可能利用此漏洞控制服务器。该漏洞存在于接收套接字数据期间所使用的循环中的逻辑错误。代码分配了0x19000字节长的初始缓冲区： .text:00406077 191A8 68+ push 19000h ; s

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-0027

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-0027

Please Login to view more intelligence information

http://dvlabs.tippingpoint.com/advisory/TPTI-08-02x_refsource_MISC
http://securityreason.com/securityalert/3551third-party-advisoryx_refsource_SREASON
http://www.securityfocus.com/bid/27313vdb-entryx_refsource_BID
http://secunia.com/advisories/28530third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1019223vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2008/0171vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/39704vdb-entryx_refsource_XF
http://www.cisco.com/en/US/products/products_security_advisory09186a0080932c61.shtmlvendor-advisoryx_refsource_CISCO
http://www.securityfocus.com/archive/1/486432/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2008-0027

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2008-0027

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2008-0027

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-0027

III. Intelligence Information for CVE-2008-0027

New Vulnerabilities

V. Comments for CVE-2008-0027

Leave a comment