Sign-up

ID

VAR-200710-0497


CVE

CVE-2007-5538


TITLE

CUCM of Centralized TFTP File Locator Service Vulnerable to buffer overflow

Trust: 0.8

sources: JVNDB: JVNDB-2007-002794

DESCRIPTION

Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors involving the processing of filenames, aka CSCsh47712. Cisco Unified Communications Manager is prone to a denial-of-service vulnerability and a buffer-overflow vulnerability. Successfully exploiting these issues allows remote attackers to crash affected devices by triggering kernel panics or to execute arbitrary machine code. These issues facilitate the complete remote compromise of affected devices. Versions of Cisco Unified Communications Manager in the 5 and 6 series prior to 6.0(1) are affected by these issues

Trust: 1.98

sources: NVD: CVE-2007-5538 // JVNDB: JVNDB-2007-002794 // BID: 26105 // VULHUB: VHN-28900

AFFECTED PRODUCTS

vendor:ciscomodel:unified callmanagerscope:eqversion:5.0

Trust: 2.7

vendor:ciscomodel:unified communications managerscope:lteversion:5.1\(2\)

Trust: 1.0

vendor:ciscomodel:unified communications managerscope:eqversion:5.1(3)

Trust: 0.8

vendor:ciscomodel:unified communications managerscope:ltversion:5.1

Trust: 0.8

vendor:ciscomodel:unified communications managerscope:eqversion:6.0

Trust: 0.6

vendor:ciscomodel:unified communications manager 5.1scope: - version: -

Trust: 0.6

vendor:ciscomodel:unified communications managerscope:eqversion:5.1\(2\)

Trust: 0.6

vendor:ciscomodel:unified communications managerscope:eqversion:5.1(2)

Trust: 0.3

vendor:ciscomodel:unified communications managerscope:eqversion:5.1(1)

Trust: 0.3

vendor:ciscomodel:unified callmanagerscope:eqversion:5.1

Trust: 0.3

vendor:ciscomodel:unified callmanager 5.0 su1scope: - version: -

Trust: 0.3

vendor:ciscomodel:unified callmanagerscope:eqversion:5.0(4)

Trust: 0.3

vendor:ciscomodel:unified callmanager 5.0scope: - version: -

Trust: 0.3

vendor:ciscomodel:unified callmanagerscope:eqversion:5.0(3)

Trust: 0.3

vendor:ciscomodel:unified callmanagerscope:eqversion:5.0(2)

Trust: 0.3

vendor:ciscomodel:unified callmanagerscope:eqversion:5.0(1)

Trust: 0.3

vendor:ciscomodel:unified communications managerscope:neversion:6.0(1)

Trust: 0.3

sources: BID: 26105 // JVNDB: JVNDB-2007-002794 // CNNVD: CNNVD-200710-334 // NVD: CVE-2007-5538

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2007-5538
value: HIGH

Trust: 1.0

NVD: CVE-2007-5538
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200710-334
value: CRITICAL

Trust: 0.6

VULHUB: VHN-28900
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2007-5538
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-28900
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-28900 // JVNDB: JVNDB-2007-002794 // CNNVD: CNNVD-200710-334 // NVD: CVE-2007-5538

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-28900 // JVNDB: JVNDB-2007-002794 // NVD: CVE-2007-5538

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200710-334

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200710-334

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2007-002794

PATCH
title:cisco-sa-20071017-cucmurl:http://www.cisco.com/en/US/products/csa/cisco-sa-20071017-cucm.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-002794

EXTERNAL IDS
db:NVDid:CVE-2007-5538
Trust: 2.8
db:BIDid:26105
Trust: 2.0
db:SECUNIAid:27296
Trust: 1.7
db:VUPENid:ADV-2007-3532
Trust: 1.7
db:SECTRACKid:1018828
Trust: 1.7
db:OSVDBid:37940
Trust: 1.7
db:JVNDBid:JVNDB-2007-002794
Trust: 0.8
db:XFid:37247
Trust: 0.6
db:CISCOid:20071017 CISCO UNIFIED COMMUNICATIONS MANAGER DENIAL OF SERVICE VULNERABILITIES
Trust: 0.6
db:CNNVDid:CNNVD-200710-334
Trust: 0.6
db:VULHUBid:VHN-28900
Trust: 0.1
sources:
            
            
            VULHUB: VHN-28900 // 
            
            
            
            BID: 26105 // 
            
            
            
            JVNDB: JVNDB-2007-002794 // 
            
            
            
            CNNVD: CNNVD-200710-334 // 
            
            
            
            NVD: CVE-2007-5538

REFERENCES
url:http://www.securityfocus.com/bid/26105
Trust: 1.7
url:http://www.cisco.com/en/us/products/products_security_advisory09186a00808dda34.shtml
Trust: 1.7
url:http://osvdb.org/37940
Trust: 1.7
url:http://www.securitytracker.com/id?1018828
Trust: 1.7
url:http://secunia.com/advisories/27296
Trust: 1.7
url:http://www.vupen.com/english/advisories/2007/3532
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/37247
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-5538
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-5538
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/37247
Trust: 0.6
url:http://www.frsirt.com/english/advisories/2007/3532
Trust: 0.6
url:http://www.cisco.com/en/us/products/sw/voicesw/ps556/
Trust: 0.3
url:http://www.cisco.com/warp/public/707/cisco-sa-20071017-cucm.shtml
Trust: 0.3
sources:
            
            
            VULHUB: VHN-28900 // 
            
            
            
            BID: 26105 // 
            
            
            
            JVNDB: JVNDB-2007-002794 // 
            
            
            
            CNNVD: CNNVD-200710-334 // 
            
            
            
            NVD: CVE-2007-5538

CREDITS
Cisco Security bulletin
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200710-334

SOURCES
db:VULHUBid:VHN-28900
db:BIDid:26105
db:JVNDBid:JVNDB-2007-002794
db:CNNVDid:CNNVD-200710-334
db:NVDid:CVE-2007-5538

LAST UPDATE DATE
2024-11-23T22:09:45.020000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-28900date:2017-07-29T00:00:00
db:BIDid:26105date:2007-10-31T19:36:00
db:JVNDBid:JVNDB-2007-002794date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200710-334date:2007-10-23T00:00:00
db:NVDid:CVE-2007-5538date:2024-11-21T00:38:08.203

SOURCES RELEASE DATE
db:VULHUBid:VHN-28900date:2007-10-18T00:00:00
db:BIDid:26105date:2007-10-17T00:00:00
db:JVNDBid:JVNDB-2007-002794date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200710-334date:2007-10-17T00:00:00
db:NVDid:CVE-2007-5538date:2007-10-18T00:17:00