Cisco : Security Vulnerabilities, CVEs, Published In 2008 (Overflow) CVSS score >= 9
Stack-based buffer overflow in the SetSource method in the NetCamPlayerWeb11gv2 ActiveX control in NetCamPlayerWeb11gv2.ocx on the Cisco Linksys WVC54GC wireless video camera before firmware 1.25 allows remote attackers to execute arbitrary code via long invalid arguments.
Max CVSS
9.3
EPSS Score
1.89%
Published
2008-12-09
Updated
2009-08-20
CVE-2008-3558
Public exploit
Stack-based buffer overflow in the WebexUCFObject ActiveX control in atucfobj.dll in Cisco WebEx Meeting Manager before 20.2008.2606.4919 allows remote attackers to execute arbitrary code via a long argument to the NewObject method.
Max CVSS
9.3
EPSS Score
93.50%
Published
2008-08-08
Updated
2017-09-29
Multiple buffer overflows in securecgi-bin/CSuserCGI.exe in User-Changeable Password (UCP) before 4.2 in Cisco Secure Access Control Server (ACS) for Windows and ACS Solution Engine allow remote attackers to execute arbitrary code via a long argument located immediately after the Logout argument, and possibly unspecified other vectors.
Max CVSS
10.0
EPSS Score
92.67%
Published
2008-03-14
Updated
2018-10-15
Heap-based buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SIP firmware might allow remote SIP servers to execute arbitrary code via a crafted challenge/response message.
Max CVSS
9.3
EPSS Score
0.52%
Published
2008-02-15
Updated
2017-08-08
Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP and SIP firmware might allow remote attackers to execute arbitrary code via a crafted DNS response.
Max CVSS
10.0
EPSS Score
10.43%
Published
2008-02-15
Updated
2017-08-08
Buffer overflow in the telnet server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G running SCCP firmware might allow remote authenticated users to execute arbitrary code via a crafted command.
Max CVSS
10.0
EPSS Score
7.87%
Published
2008-02-15
Updated
2017-08-08
Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SIP firmware might allow remote attackers to execute arbitrary code via a SIP message with crafted MIME data.
Max CVSS
10.0
EPSS Score
10.43%
Published
2008-02-15
Updated
2017-08-08
Heap-based buffer overflow in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM) 4.2 before 4.2(3)SR3 and 4.3 before 4.3(1)SR1, and CallManager 4.0 and 4.1 before 4.1(3)SR5c, allows remote attackers to cause a denial of service or execute arbitrary code via a long request.
Max CVSS
10.0
EPSS Score
17.72%
Published
2008-01-17
Updated
2018-10-15
8 vulnerabilities found