cvelistv5 - cve-2007-5538

CVE-2007-5538 (GCVE-0-2007-5538)

Vulnerability from cvelistv5

Published

2007-10-18 00:00

Modified

2024-08-07 15:31

Severity ?

CWE

Summary

Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors involving the processing of filenames, aka CSCsh47712.

References

URL

Tags

	http://www.securityfocus.com/bid/26105	vdb-entry, x_refsource_BID
	http://osvdb.org/37940	vdb-entry, x_refsource_OSVDB
	http://www.vupen.com/english/advisories/2007/3532	vdb-entry, x_refsource_VUPEN
	https://exchange.xforce.ibmcloud.com/vulnerabilities/37247	vdb-entry, x_refsource_XF
	http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtml	vendor-advisory, x_refsource_CISCO
	http://www.securitytracker.com/id?1018828	vdb-entry, x_refsource_SECTRACK
	http://secunia.com/advisories/27296	third-party-advisory, x_refsource_SECUNIA

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T15:31:59.183Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "26105",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/26105"
          },
          {
            "name": "37940",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/37940"
          },
          {
            "name": "ADV-2007-3532",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/3532"
          },
          {
            "name": "cucm-tftp-filename-bo(37247)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37247"
          },
          {
            "name": "20071017 Cisco Unified Communications Manager Denial of Service Vulnerabilities",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtml"
          },
          {
            "name": "1018828",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1018828"
          },
          {
            "name": "27296",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27296"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-10-17T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors involving the processing of filenames, aka CSCsh47712."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "26105",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/26105"
        },
        {
          "name": "37940",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/37940"
        },
        {
          "name": "ADV-2007-3532",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/3532"
        },
        {
          "name": "cucm-tftp-filename-bo(37247)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37247"
        },
        {
          "name": "20071017 Cisco Unified Communications Manager Denial of Service Vulnerabilities",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtml"
        },
        {
          "name": "1018828",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1018828"
        },
        {
          "name": "27296",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27296"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-5538",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors involving the processing of filenames, aka CSCsh47712."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "26105",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/26105"
            },
            {
              "name": "37940",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/37940"
            },
            {
              "name": "ADV-2007-3532",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/3532"
            },
            {
              "name": "cucm-tftp-filename-bo(37247)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37247"
            },
            {
              "name": "20071017 Cisco Unified Communications Manager Denial of Service Vulnerabilities",
              "refsource": "CISCO",
              "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtml"
            },
            {
              "name": "1018828",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1018828"
            },
            {
              "name": "27296",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/27296"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-5538",
    "datePublished": "2007-10-18T00:00:00.000Z",
    "dateReserved": "2007-10-17T00:00:00.000Z",
    "dateUpdated": "2024-08-07T15:31:59.183Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2007-AVI-447

Vulnerability from certfr_avis

Plusieurs correctifs pour de multiples vulnérabilités touchant des produits Cisco ont été mis en ligne.

Description

Plusieurs vulnérabilités permettant entre autre des dénis de service et le contournement des politiques de sécurité sont corrigés dans les correctifs mis en ligne par Cisco.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Les logiciels suivants nécessitent l'application du correctif ICM7.1(5)_ES46 :
- Cisco Unified Intelligent Contact Management Enterprise ;
- Cisco Unified ICM Hosted ;
- Cisco Unified Contact Center Enterprise ;
- Cisco Unified Contact center Hosted ;
- Cisco Unified CallManager ;
- Cisco System Unified Contact Enterprise.
Les boitiers Cisco PIX et ASA, avec les versions logicielles 7.0, 7.1, 7.2 et 8.0 sont vulnérables et nécéssitent l'installation du correctif ;
Les logiciels Cisco Unified CallManager 5.0 and Communications Manager 5.1 sont vulnérables, et nécessitent l'installation de la version 6.0 ;
Le module Cisco Firewall Services (version antérieure à la 3.2) est vulnérable et nécessite l'installation de la mise à jour.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletins de sécurité de Cisco 97836, 98612, 98711 et 98833 du 17 octobre 2007	None	vendor-advisory
Bulletin de sécurité Cisco ID 98833 du 17 octobre 2007 :	-	other
Bulletin de sécurité Cisco ID 98711 du 17 octobre 2007 :	-	other
Bulletin de sécurité Cisco ID 98612 du 17 octobre 2007 :	-	other
Bulletin de sécurité Cisco ID 97836 du 17 octobre 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cUL\u003e    \u003cLI\u003eLes logiciels suivants n\u00e9cessitent l\u0027application du    correctif ICM7.1(5)_ES46 :      \u003cUL\u003e        \u003cLI\u003eCisco Unified Intelligent Contact Management Enterprise        ;\u003c/LI\u003e        \u003cLI\u003eCisco Unified ICM Hosted ;\u003c/LI\u003e        \u003cLI\u003eCisco Unified Contact Center Enterprise ;\u003c/LI\u003e        \u003cLI\u003eCisco Unified Contact center Hosted ;\u003c/LI\u003e        \u003cLI\u003eCisco Unified CallManager ;\u003c/LI\u003e        \u003cLI\u003eCisco System Unified Contact Enterprise.\u003c/LI\u003e      \u003c/UL\u003e    \u003c/LI\u003e    \u003cLI\u003eLes boitiers Cisco PIX et ASA, avec les versions    logicielles 7.0, 7.1, 7.2 et 8.0 sont vuln\u00e9rables et    n\u00e9c\u00e9ssitent l\u0027installation du correctif ;\u003c/LI\u003e    \u003cLI\u003eLes logiciels Cisco Unified CallManager 5.0 and    Communications Manager 5.1 sont vuln\u00e9rables, et n\u00e9cessitent    l\u0027installation de la version 6.0 ;\u003c/LI\u003e    \u003cLI\u003eLe module Cisco Firewall Services (version ant\u00e9rieure \u00e0 la    3.2) est vuln\u00e9rable et n\u00e9cessite l\u0027installation de la mise \u00e0    jour.\u003c/LI\u003e  \u003c/UL\u003e",
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s permettant entre autre des d\u00e9nis de service et\nle contournement des politiques de s\u00e9curit\u00e9 sont corrig\u00e9s dans les\ncorrectifs mis en ligne par Cisco.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-5539",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5539"
    },
    {
      "name": "CVE-2007-5537",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5537"
    },
    {
      "name": "CVE-2007-5538",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5538"
    }
  ],
  "initial_release_date": "2007-10-19T00:00:00",
  "last_revision_date": "2007-10-19T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 98833 du 17 octobre 2007 :",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20071017-cucm.shtml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 98711 du 17 octobre 2007 :",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20071017-asa.shtml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 98612 du 17 octobre 2007 :",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20071017-fwsm.shtml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 97836 du 17 octobre 2007 :",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20071017-IPCC.shtml"
    }
  ],
  "reference": "CERTA-2007-AVI-447",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-10-19T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Plusieurs correctifs pour de multiples vuln\u00e9rabilit\u00e9s touchant des\nproduits Cisco ont \u00e9t\u00e9 mis en ligne.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans des produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletins de s\u00e9curit\u00e9 de Cisco 97836, 98612, 98711 et 98833 du 17 octobre 2007",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2007-5538 (GCVE-0-2007-5538)

Vulnerability from cvelistv5

CERTA-2007-AVI-447

Vulnerability from certfr_avis

Description

Solution

Tags

Sightings

Nomenclature