Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0367

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2006-0367
Last Modified 07 Mar 2011 12:00:00
Published 22 Jan 2006 03:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-0367

Summary

Unspecified vulnerability in Cisco CallManager 3.2 and earlier, 3.3 before 3.3(5)SR1, 4.0 before 4.0(2a)SR2c, and 4.1 before 4.1(3)SR2 allows remote authenticated users with read-only administrative privileges to obtain full administrative privileges via a "crafted URL on the CCMAdmin web page."

Vulnerable Systems


References

OSVDB - 22621

CISCO - 20060118 Cisco Call Manager Privilege Escalation

SECTRACK - 1015502

SECUNIA - 18501

XF - cisco-callmanager-ccmadmin-gain-priv(24172)

VUPEN - ADV-2006-0250

BID - 16293


Last Updated: 27 May 2016 10:41:38