Info

Disclosure

Jan 18, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Cisco CallManager contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a read-only administrative user submits a specifically crafted URL to the CCMAdmin control panel, allowing them to gain full administrative access. This flaw may lead to a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Authentication Management
Impact: Loss of Integrity
Exploit: Exploit Unknown
OSVDB: Web Related, Voice over IP

Solution

The vendor has released a number of updates, which have been reported to fix this vulnerability. Users of version 3.2 are requested to migrate to version 3.3. An upgrade is required as there are no known workarounds.

Products

Cisco Systems, Inc.	Call Manager	4.1(3)SR1
		4.0(2a)SR2b
		3.3(5)
		3.2

References

Security Tracker: 1015502
Bugtraq ID: 16293
Secunia Advisory ID: 18501
CVE ID: 2006-0367 (see also: NVD)
VUPEN Advisory: ADV-2006-0250
Keyword: cisco-sa-20060118-ccmpe,CSCef75361,CSCsb12765,CSCsb88649,CSCsc26275
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0646.html
Vendor Specific Advisory URL: http://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmpe.shtml
News Article: http://www.networkworld.com/news/2006/011906-cisco-voip-flaw.html

Credit

CNLabs - CNLabs

Direct URL: http://osvdb.org/22621

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

Call Manager

References

Credit