Update Protection against Cisco Unified Communications Manager CTL Provider Heap Overflow Vulnerability
| Check Point Reference: | CPAI-2008-015 | |
| Date Published: | ||
| Severity: | ||
| Source: | Secunia Advisory: SA28530 | |
| Industry Reference(s): | CVE-2008-0027 | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? Cisco Systems Unified CallManager 4.0 Cisco Systems Unified CallManager 4.1 Versions prior to 4.1(3)SR5c Cisco Systems Unified Communications Manager 4.2 Versions prior to 4.2(3)SR3 Cisco Systems Unified Communications Manager 4.3 Versions prior to 4.3(1)SR1 | ||
| Vulnerability Description A buffer overflow vulnerability exists in the Certificate Trust List (CTL) Provider service of Cisco Unified Communications Manager. Cisco Unified Communications Manager provides voice, video, mobility, and presence services. The Cisco Certificate Trust List (CTL) Provider service handles authentication and certificate requests for the Cisco Unified Communications Manager. A remote attacker may exploit this issue to execute arbitrary code on an affected server. |
||
|
Vulnerability Details The vulnerability is due to an error in the Certificate Trust List (CTL) Provider service that fails to properly process crafted client requests. A remote attacker can trigger this issue by sending a crafted message to a vulnerable server. Successful exploitation of this vulnerability may create a denial of service condition and allow execution of arbitrary code on the affected system. |
Protection Overview
By enabling this protection, SmartDefense will detect and block malformed messages sent to the CTL service.
In order for the protection to be activated, update your VPN-1/InterSpect/Connectra product to the latest SmartDefense update. For information on how to update SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.