header-logo
Suggest Exploit
vendor:
Cisco Unified Communications Manager
by:
Unknown
7.5
CVSS
HIGH
Local Privilege Escalation
Unknown
CWE
Product Name: Cisco Unified Communications Manager
Affected Version From: Cisco Unified Communications Manager 6
Affected Version To: Cisco Unified Communications Manager 8
Patch Exists: NO
Related CWE:
CPE: a:cisco:unified_communications_manager:6 cpe:/a:cisco:unified_communications_manager:7 cpe:/a:cisco:unified_communications_manager:8
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Local Privilege Escalation Vulnerability in Cisco Unified Communications Manager

Attackers can exploit this issue to gain administrative access to the affected device and execute arbitrary code with superuser privileges. Successful exploits will lead to the complete compromise of the device.

Mitigation:

No known mitigation or remediation for this vulnerability
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/44672/info

Cisco Unified Communications Manager is prone to a local privilege-escalation vulnerability.

Attackers can exploit this issue to gain administrative access to the affected device and execute arbitrary code with superuser privileges. Successful exploits will lead to the complete compromise of the device.

This issue is tracked by Cisco Bug ID CSCti52041 and CSCti74930.

Cisco Unified Communications Manager 6, 7, and 8 are vulnerable. 

/usr/local/cm/bin/pktCap_protectData -i";id"

Navigation

Suggest Exploit

Services By CQR