Cisco Unified Communications Manager (CUCM), formerly CallManager, contains a heap overflow vulnerability in the Certificate Trust List (CTL) Provider service that could allow a remote, unauthenticated user to cause a denial of service (DoS) condition or execute arbitrary code. The risk is MEDIUM. Could allow a remote, unauthenticated user to cause a denial of service (DoS) condition or execute arbitrary code.
More...