Computer Security
[EN] securityvulns.ru no-pyccku


Cisco Unity authentication bypass
Published:09.10.2008
Source:
SecurityVulns ID:9346
Type:remote
Threat Level:
5/10
Description:Authentication bypass to administration features if anonymous access is enabled.
Affected:CISCO : Cisco Unity 4.2
 CISCO : Cisco Unity 5.0
 CISCO : Cisco Unity 7.0
CVE:CVE-2008-3814 (Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to bypass authentication and read or modify system configuration parameters by going to a specific link more than once.)
Original documentdocumentCISCO, Cisco Security Advisory: Authentication Bypass in Cisco Unity (09.10.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod