Lucene search

[email protected]CVE-2009-0632

HistoryMar 12, 2009 - 3:20 p.m.

CVE-2009-0632

2009-03-1215:20:00

CWE-255

[email protected]

web.nvd.nist.gov

cisco

unified communications

cucm

ip phone

security

vulnerability

privilege escalation

cleartext credentials

remote attack

6.8 Medium

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

77.4%

JSON

The IP Phone Personal Address Book (PAB) Synchronizer feature in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.1, 4.2 before 4.2(3)SR4b, 4.3 before 4.3(2)SR1b, 5.x before 5.1(3e), 6.x before 6.1(3), and 7.0 before 7.0(2) sends privileged directory-service account credentials to the client in cleartext, which allows remote attackers to modify the CUCM configuration and perform other privileged actions by intercepting these credentials, and then using them in requests unrelated to the intended synchronization task, as demonstrated by (1) DC Directory account credentials in CUCM 4.x and (2) TabSyncSysUser account credentials in CUCM 5.x through 7.x.

CPENameOperatorVersion
cisco:unified_communications_managercisco unified communications managereq5.1\(3c\)
cisco:unified_communications_managercisco unified communications managereq6.1\(2\)
cisco:unified_communications_managercisco unified communications managereq5.1\(2a\)
cisco:unified_communications_managercisco unified communications managereq6.0\(1\)
cisco:unified_communications_managercisco unified communications managereq5.1\(2\)
cisco:unified_communications_managercisco unified communications managereq4.2\(3\)sr2b
cisco:unified_communications_managercisco unified communications managereq5.0
cisco:unified_communications_managercisco unified communications managereq4.3\(2\)sr1
cisco:unified_communications_managercisco unified communications managereq5.1\(2b\)
cisco:unified_communications_managercisco unified communications managereq6.1

CPE	Name	Operator	Version
cisco:unified_communications_manager	cisco unified communications manager	eq	5.1\(3c\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1\(2\)
cisco:unified_communications_manager	cisco unified communications manager	eq	5.1\(2a\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.0\(1\)
cisco:unified_communications_manager	cisco unified communications manager	eq	5.1\(2\)
cisco:unified_communications_manager	cisco unified communications manager	eq	4.2\(3\)sr2b
cisco:unified_communications_manager	cisco unified communications manager	eq	5.0
cisco:unified_communications_manager	cisco unified communications manager	eq	4.3\(2\)sr1
cisco:unified_communications_manager	cisco unified communications manager	eq	5.1\(2b\)
cisco:unified_communications_manager	cisco unified communications manager	eq	6.1

Rows per page:

1-10 of 301

References

osvdb.org/52589

secunia.com/advisories/34238

www.cisco.com/en/US/products/products_applied_mitigation_bulletin09186a0080a86434.html

www.cisco.com/en/US/products/products_security_advisory09186a0080a8643c.shtml

www.securityfocus.com/bid/34082

www.securitytracker.com/id?1021839

www.vupen.com/english/advisories/2009/0675

exchange.xforce.ibmcloud.com/vulnerabilities/49196

6.8 Medium

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

77.4%

JSON

Related for CVE-2009-0632

securityvulns2 prion1 cisco1 openvas2