2011-10-27 23:55:00 2014-02-27 22:37:00

Directory traversal vulnerability in Cisco Unified Communications Manager (CUCM) 5.x and 6.x before 6.1(5)SU2, 7.x before 7.1(5b)SU2, and 8.x before 8.0(3), and Cisco Unified Contact Center Express (aka Unified CCX or UCCX) and Cisco Unified IP Interactive Voice Response (Unified IP-IVR) before 6.0(1)SR1ES8, 7.0(x) before 7.0(2)ES1, 8.0(x) through 8.0(2)SU3, and 8.5(x) before 8.5(1)SU2, allows remote attackers to read arbitrary files via a crafted URL, aka Bug IDs CSCth09343 and CSCts44049.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

COMPLETE

Integrity

NONE

Availability

NONE
Cisco CatOS 2.1 (12) Cisco Catalyst 6509-NEB-A Switch Cisco Catalyst 5000 Cisco Catalyst 7600 2.2 (1a)WS-SVC-NAM-1 Cisco Catalyst 5xxx supervisor software 2.1.502 Cisco CatOS 6.1 Cisco Catalyst 6624 Cisco CatOS 5.5 (9) Cisco Catalyst 6509-V-E Switch Cisco Catalyst 6000 2.1 (2)WS-X6380-NAM Cisco Catalyst 6500 3.1 (1a)WS-SVC-NAM-1 Cisco Catalyst 6000 Intrusion Detection System Module Cisco Catalyst WS-C2924M-XL Cisco Catalyst 5xxx supervisor software 2.1.501 Cisco CatOS 2.4 (4) Cisco Catalyst 7600 3.1 (1a)WS-X6380-NAM Cisco CatOS 2.1 (6) Cisco CatOS 6.1 (1b) Cisco Catalyst 6509-E Switch Cisco Catalyst 6500 2.2 (1a)WS-SVC-NAM-2 Cisco Catalyst 7600 2.1 (2)WS-X6380-NAM Cisco CatOS 2.1 (2) Cisco CatOS 6.1 (1a) Cisco Catalyst 6500 Cisco Catalyst 6504-E Switch Cisco CatOS 2.1 (4) Cisco CatOS 2.1 (10) Cisco Catalyst 4912G Cisco CatOS 2.1 (1) Cisco Catalyst 8510MSR Cisco CatOS Cisco Catalyst 5xxx supervisor software Cisco Catalyst 8540MSR Cisco Catalyst 7600 3.1 (1a)WS-SVC-NAM-1 Cisco Catalyst 7600 Cisco Catalyst 6500 2.1 (2)WS-X6380-NAM Cisco Catalyst 5xxx supervisor software 1.0 Cisco CatOS 2.4 (5) Cisco Catalyst 8540CSR Cisco Catalyst 8510CSR Cisco Catalyst 5500 Cisco Catalyst 6000 3.1 (1a)WS-X6380-NAM Cisco Catalyst 6506-E Switch Cisco Catalyst 8500 Cisco Catalyst 5xxx supervisor software 2.1.5 Cisco CatOS 2.4 (2) Cisco Catalyst 7600 3.1 (1a)WS-SVC-NAM-2 Cisco Catalyst 7600 2.2 (1a)WS-SVC-NAM-2 Cisco Catalyst 5509 Cisco Catalyst 6500 3.1 (1a)WS-SVC-NAM-2 Cisco CatOS 2.1 (5) Cisco Catalyst 4908G-L3 Cisco Catalyst 6000 Cisco Catalyst 6500 3.1 (1a)WS-X6380-NAM Cisco CatOS 2.1 (3) Cisco Catalyst 5505 Cisco CatOS 2.1 (11) Cisco CatOS 2.4 (3) Cisco CatOS 2.4 (1) Cisco CatOS 6.1 (1) Cisco CatOS 2.3 (1) Cisco Catalyst 6500 2.2 (1a)WS-SVC-NAM-1 Cisco Catalyst 6503-E Switch Cisco Catalyst 4948 Cisco Catalyst 6513 Switch Cisco CatOS 6.1 (1c) Cisco CatOS 2.4 (5a) Cisco Catalyst 6000 2.2 (1a)WS-SVC-NAM-1