Computer Security

Cisco Unity authentication bypass
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Cisco Unity authentication bypass
Published:09.10.2008
Source:BUGTRAQ
SecurityVulns ID:9346
Type:remote
Level:5/10
Description:Authentication bypass to administration features if anonymous access is enabled.
Affected:CISCO : Cisco Unity 4.2
 CISCO : Cisco Unity 5.0
 CISCO : Cisco Unity 7.0
CVE:CVE-2008-3814 (Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to bypass authentication and read or modify system configuration parameters by going to a specific link more than once.)
Original documentdocumentCISCO, Cisco Security Advisory: Authentication Bypass in Cisco Unity (09.10.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server