CVE-2009-2865

Description

Buffer overflow in the login implementation in the Extension Mobility feature in the Unified Communications Manager Express (CME) component in Cisco IOS 12.4XW, 12.4XY, 12.4XZ, and 12.4YA allows remote attackers to execute arbitrary code or cause a denial of service via crafted HTTP requests, aka Bug ID CSCsq58779.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/53448

http://www.vupen.com/english/advisories/2009/2758

http://www.securitytracker.com/id?1022932

http://www.securityfocus.com/bid/36498

http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8116.shtml

http://tools.cisco.com/security/center/viewAlert.x?alertId=18884

http://osvdb.org/58335

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3