What is CVE-2008-0027?

CVE-2008-0027 is a vulnerability in N/a. Published 2008-01-17.

Is CVE-2008-0027 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-0027

Heap-based buffer overflow in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM) 4.2 before 4.2(3)SR3 and 4.3 before 4.3(1)SR1, and CallManager 4.0 and 4.1 before 4.1(3)SR5c…

EPSS: 0.571 (98.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

20080116 TPTI-08-02: Cisco Call Manager CTLProvider Heap Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
ADV-2008-0171 (vdb-entry, x_refsource_VUPEN)
3551 (x_refsource_SREASON, third-party-advisory)
20080116 Cisco Unified Communications Manager CTL Provider Heap Overflow (x_refsource_CISCO, vendor-advisory)
dvlabs.tippingpoint.com/advisory/TPTI-08-02 (x_refsource_MISC)
cisco-cucm-ctl-bo(39704) (vdb-entry, x_refsource_XF)
1019223 (vdb-entry, x_refsource_SECTRACK)
27313 (vdb-entry, x_refsource_BID)
28530 (x_refsource_SECUNIA, third-party-advisory)

Frequently asked questions

What is CVE-2008-0027?: CVE-2008-0027 is a vulnerability in N/a. Published 2008-01-17.
Is CVE-2008-0027 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.