Computer Security
[EN] securityvulns.ru no-pyccku


Cisco Unified Communications Disaster Recovery Framework code execution
Published:05.04.2008
Source:
SecurityVulns ID:8864
Type:remote
Threat Level:
5/10
Description:Command execution thorugh backup management service.
CVE:CVE-2008-1154 (The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unified Communications Manager (CUCM) 5.x and 6.x, Unified Presence 1.x and 6.x, Emergency Responder 2.x, and Mobility Manager 2.x, does not require authentication for requests received from the network, which allows remote attackers to execute arbitrary code via unspecified vectors.)
Original documentdocumentCISCO, Cisco Security Advisory: Cisco Unified Communications Disaster Recovery Framework Command Execution Vulnerability (05.04.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod