Cisco disclosed that the Cisco Unified Communications Manager (CUCM), formerly CallManager, contains a heap overflow vulnerability in the Certificate Trust List (CTL) Provider service that could allow a remote, unauthenticated user to cause a denial of service (DoS) condition or execute arbitrary code. Here is a link to the vulnerability:
http://www.cisco.com/en/US/products/products_security_advisory09186a0080932c61.shtml
Comments