Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2244

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2244
Last Modified 05 Sep 2008 04:51:15
Published 12 Jul 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2244

Summary

The aupair service (aupair.exe) in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to execute arbitrary code or corrupt memory via crafted packets that trigger a memory allocation failure and lead to a buffer overflow.

Vulnerable Systems


References

CISCO - 20050712 Cisco CallManager Memory Handling Vulnerabilities

XF - malloc-return-value-dos(19053)

BID - 14255


Last Updated: 27 May 2016 10:40:27