Cisco Security Advisory – Cisco IOS devices that are configured for Cisco Unified Communications Manager Express (CME) and the Extension Mobility feature are vulnerable to a buffer overflow vulnerability. Successful exploitation of this vulnerability may result in the execution of arbitrary code or a Denial of Service (DoS) condition on an affected device.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81594/cisco-sa-20090923-cme.txt
Source: https://packetstormsecurity.com/files/81594/Cisco-Security-Advisory-20090923-cme.html