SynopsisThe remote device is affected by a buffer overflow vulnerability.
DescriptionAccording to its self-reported version, the remote Cisco Unified Communications Manager (CUCM) device is affected by a heap-based buffer overflow in the GNU C Library (glibc) due to improperly validating user-supplied input in the glibc functions
__nss_hostname_digits_dots(), gethostbyname(), and gethostbyname2().
This allows a remote attacker to cause a buffer overflow, resulting in a denial of service condition or the execution of arbitrary code.
SolutionApply the relevant patch referenced in the Cisco bug advisory.