Описание
The aupair service (aupair.exe) in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to execute arbitrary code or corrupt memory via crafted packets that trigger a memory allocation failure and lead to a buffer overflow.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:cisco:call_manager:3.2:*:*:*:*:*:*:*
cpe:2.3:h:cisco:call_manager:3.3:*:*:*:*:*:*:*
cpe:2.3:h:cisco:call_manager:4.0:*:*:*:*:*:*:*
cpe:2.3:h:cisco:call_manager:4.1:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01384
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The aupair service (aupair.exe) in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to execute arbitrary code or corrupt memory via crafted packets that trigger a memory allocation failure and lead to a buffer overflow.
EPSS
Процентиль: 80%
0.01384
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other