CVE-2006-0367

Current Description

Unspecified vulnerability in Cisco CallManager 3.2 and earlier, 3.3 before 3.3(5)SR1, 4.0 before 4.0(2a)SR2c, and 4.1 before 4.1(3)SR2 allows remote authenticated users with read-only administrative privileges to obtain full administrative privileges via a "crafted URL on the CCMAdmin web page."

Basic Data

PublishedJanuary 22, 2006
Last ModifiedJuly 20, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-noinfo
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score6.5
SeverityMEDIUM
Exploitability Score8.0
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegetrue

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3HardwareCiscoCall Manager1.0*******
    2.3HardwareCiscoCall Manager2.0*******
    2.3HardwareCiscoCall Manager3.0*******
    2.3HardwareCiscoCall Manager3.1*******
    2.3HardwareCiscoCall Manager3.1(2)*******
    2.3HardwareCiscoCall Manager3.1(3a)*******
    2.3HardwareCiscoCall Manager3.2*******
    2.3HardwareCiscoCall Manager3.3*******
    2.3HardwareCiscoCall Manager3.3(3)*******
    2.3HardwareCiscoCall Manager3.3(3)es61*******
    2.3HardwareCiscoCall Manager3.3(4)es25*******
    2.3HardwareCiscoCall Manager3.3(5)*******
    2.3HardwareCiscoCall Manager4.0*******
    2.3HardwareCiscoCall Manager4.0(2a)es40*******
    2.3HardwareCiscoCall Manager4.0(2a)sr2b*******
    2.3HardwareCiscoCall Manager4.1(2)es33*******
    2.3HardwareCiscoCall Manager4.1(3)es07*******
    2.3HardwareCiscoCall Manager4.1(3)sr1*******

Vulnerable Software List

VendorProductVersions
Cisco Call Manager 1.0, 2.0, 3.0, 3.1, 3.1(2), 3.1(3a), 3.2, 3.3, 3.3(3), 3.3(3)es61, 3.3(4)es25, 3.3(5), 4.0, 4.0(2a)es40, 4.0(2a)sr2b, 4.1(2)es33, 4.1(3)es07, 4.1(3)sr1

References

NameSourceURLTags
18501http://secunia.com/advisories/18501SECUNIAPatch Vendor Advisory
1015502http://securitytracker.com/id?1015502SECTRACKPatch
20060118 Cisco Call Manager Privilege Escalationhttp://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmpe.shtmlCISCOPatch Vendor Advisory
22621http://www.osvdb.org/22621OSVDBPatch
16293http://www.securityfocus.com/bid/16293BID
ADV-2006-0250http://www.vupen.com/english/advisories/2006/0250VUPENVendor Advisory
cisco-callmanager-ccmadmin-gain-priv(24172)https://exchange.xforce.ibmcloud.com/vulnerabilities/24172XF