Directory traversal vulnerability in Cisco Unified Communications Manager (CUCM) 5.x and 6.x before 6.1(5)SU2, 7.x before 7.1(5b)SU2, and 8.x before 8.0(3), and Cisco Unified Contact Center Express (aka Unified CCX or UCCX) and Cisco Unified IP Interactive Voice Response (Unified IP-IVR) before 6.0(1)SR1ES8, 7.0(x) before 7.0(2)ES1, 8.0(x) through 8.0(2)SU3, and 8.5(x) before 8.5(1)SU2, allows remote attackers to read arbitrary files via a crafted URL, aka Bug IDs CSCth09343 and CSCts44049.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
COMPLETE
Integrity
NONE
Availability
NONE
Cisco CatOS 2.1 (12)
Cisco Catalyst 6509-NEB-A Switch
Cisco Catalyst 5000
Cisco Catalyst 7600 2.2 (1a)WS-SVC-NAM-1
Cisco Catalyst 5xxx supervisor software 2.1.502
Cisco CatOS 6.1
Cisco Catalyst 6624
Cisco CatOS 5.5 (9)
Cisco Catalyst 6509-V-E Switch
Cisco Catalyst 6000 2.1 (2)WS-X6380-NAM
Cisco Catalyst 6500 3.1 (1a)WS-SVC-NAM-1
Cisco Catalyst 6000 Intrusion Detection System Module
Cisco Catalyst WS-C2924M-XL
Cisco Catalyst 5xxx supervisor software 2.1.501
Cisco CatOS 2.4 (4)
Cisco Catalyst 7600 3.1 (1a)WS-X6380-NAM
Cisco CatOS 2.1 (6)
Cisco CatOS 6.1 (1b)
Cisco Catalyst 6509-E Switch
Cisco Catalyst 6500 2.2 (1a)WS-SVC-NAM-2
Cisco Catalyst 7600 2.1 (2)WS-X6380-NAM
Cisco CatOS 2.1 (2)
Cisco CatOS 6.1 (1a)
Cisco Catalyst 6500
Cisco Catalyst 6504-E Switch
Cisco CatOS 2.1 (4)
Cisco CatOS 2.1 (10)
Cisco Catalyst 4912G
Cisco CatOS 2.1 (1)
Cisco Catalyst 8510MSR
Cisco CatOS
Cisco Catalyst 5xxx supervisor software
Cisco Catalyst 8540MSR
Cisco Catalyst 7600 3.1 (1a)WS-SVC-NAM-1
Cisco Catalyst 7600
Cisco Catalyst 6500 2.1 (2)WS-X6380-NAM
Cisco Catalyst 5xxx supervisor software 1.0
Cisco CatOS 2.4 (5)
Cisco Catalyst 8540CSR
Cisco Catalyst 8510CSR
Cisco Catalyst 5500
Cisco Catalyst 6000 3.1 (1a)WS-X6380-NAM
Cisco Catalyst 6506-E Switch
Cisco Catalyst 8500
Cisco Catalyst 5xxx supervisor software 2.1.5
Cisco CatOS 2.4 (2)
Cisco Catalyst 7600 3.1 (1a)WS-SVC-NAM-2
Cisco Catalyst 7600 2.2 (1a)WS-SVC-NAM-2
Cisco Catalyst 5509
Cisco Catalyst 6500 3.1 (1a)WS-SVC-NAM-2
Cisco CatOS 2.1 (5)
Cisco Catalyst 4908G-L3
Cisco Catalyst 6000
Cisco Catalyst 6500 3.1 (1a)WS-X6380-NAM
Cisco CatOS 2.1 (3)
Cisco Catalyst 5505
Cisco CatOS 2.1 (11)
Cisco CatOS 2.4 (3)
Cisco CatOS 2.4 (1)
Cisco CatOS 6.1 (1)
Cisco CatOS 2.3 (1)
Cisco Catalyst 6500 2.2 (1a)WS-SVC-NAM-1
Cisco Catalyst 6503-E Switch
Cisco Catalyst 4948
Cisco Catalyst 6513 Switch
Cisco CatOS 6.1 (1c)
Cisco CatOS 2.4 (5a)
Cisco Catalyst 6000 2.2 (1a)WS-SVC-NAM-1
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| 20111026 Cisco Unified Communications Manager Directory ... | |||
| 20111026 Cisco Unified Contact Center Express Directory ... |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (ID 22)
Related CAPEC 7
Relative Path Traversal (CAPEC-ID 139)
Directory Traversal (CAPEC-ID 213)
File System Function Injection, Content Based (CAPEC-ID 23)
Using Slashes and URL Encoding Combined to Bypass Validation Logic (CAPEC-ID 64)
Manipulating Input to File System Calls (CAPEC-ID 76)
Using Escaped Slashes in Alternate Encoding (CAPEC-ID 78)
Using Slashes in Alternate Encoding (CAPEC-ID 79)