Computer Security
[EN] securityvulns.ru no-pyccku


Cisco Unity Connection security vulnerabilities
Published:09.03.2012
Source:
SecurityVulns ID:12230
Type:remote
Threat Level:
6/10
Description:Privilege escalation, crafted TCP packets DoS.
Affected:CISCO : Unity Connection 7.1
 CISCO : Unity Connection 8.0
 CISCO : Unity Connection 8.5
 CISCO : Unity Connection 8.6
CVE:CVE-2012-0367 (Cisco Unity Connection before 7.1.5b(Su5), 8.0 and 8.5 before 8.5.1(Su3), and 8.6 before 8.6.2 allows remote attackers to cause a denial of service (services crash) via a series of crafted TCP segments, aka Bug ID CSCtq67899.)
 CVE-2012-0366 (Cisco Unity Connection before 7.1.3b(Su2) allows remote authenticated users to change the administrative password by leveraging the Help Desk Administrator role, aka Bug ID CSCtd45141.)
Original documentdocumentCISCO, Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unity Connection (09.03.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod