Vulnerability Details CVE-2007-5538
Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors involving the processing of filenames, aka CSCsh47712.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.075
EPSS Ranking 91.3%
CVSS Severity
CVSS v2 Score 10.0
References
- http://osvdb.org/37940
- http://secunia.com/advisories/27296
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtml
- http://www.securityfocus.com/bid/26105
- http://www.securitytracker.com/id?1018828
- http://www.vupen.com/english/advisories/2007/3532
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37247
- http://osvdb.org/37940
- http://secunia.com/advisories/27296
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtml
- http://www.securityfocus.com/bid/26105
- http://www.securitytracker.com/id?1018828
- http://www.vupen.com/english/advisories/2007/3532
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37247
Products affected by CVE-2007-5538
-
cpe:2.3:a:cisco:unified_callmanager:5.0
-
cpe:2.3:a:cisco:unified_communications_manager:-
-
cpe:2.3:a:cisco:unified_communications_manager:3.3(5)
-
cpe:2.3:a:cisco:unified_communications_manager:3.3(5)sr1
-
cpe:2.3:a:cisco:unified_communications_manager:3.3(5)sr2a
-
cpe:2.3:a:cisco:unified_communications_manager:4.1
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr1
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr2
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr3
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr4
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr6
-
cpe:2.3:a:cisco:unified_communications_manager:4.1(3)sr7
-
cpe:2.3:a:cisco:unified_communications_manager:4.2
-
cpe:2.3:a:cisco:unified_communications_manager:4.2(3)sr3
-
cpe:2.3:a:cisco:unified_communications_manager:4.2(3)sr4
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.1
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.2
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr1
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2
-
cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2b
-
cpe:2.3:a:cisco:unified_communications_manager:4.3
-
cpe:2.3:a:cisco:unified_communications_manager:4.3(1)
-
cpe:2.3:a:cisco:unified_communications_manager:4.3(2)
-
cpe:2.3:a:cisco:unified_communications_manager:4.3(2)sr1
-
cpe:2.3:a:cisco:unified_communications_manager:5.0
-
cpe:2.3:a:cisco:unified_communications_manager:5.1
-
cpe:2.3:a:cisco:unified_communications_manager:5.1(1)
-
cpe:2.3:a:cisco:unified_communications_manager:5.1(1b)
-
cpe:2.3:a:cisco:unified_communications_manager:5.1(1c)
-
cpe:2.3:a:cisco:unified_communications_manager:5.1(2)