Unrated severityNVD Advisory· Published Oct 18, 2007· Updated Apr 23, 2026

CVE-2007-5538

Description

Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors involving the processing of filenames, aka CSCsh47712.

Affected products

Cisco Systems, Inc./Unified Callmanager
cpe:2.3:a:cisco:unified_callmanager:5.0:*:*:*:*:*:*:*
Cisco Systems, Inc./Unified Communications Manager
cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:*
Range: <=5.1\(2\)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

osvdb.org/37940nvd
secunia.com/advisories/27296nvd
www.cisco.com/en/US/products/products_security_advisory09186a00808dda34.shtmlnvd
www.securityfocus.com/bid/26105nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2007/3532nvd
exchange.xforce.ibmcloud.com/vulnerabilities/37247nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000