4 matches found
CVE-2014-3333
The server in Cisco Unity Connection 9.11 and 9.12 allows remote authenticated users to obtain privileged access by conducting an "HTTP Intercept" attack and leveraging the ability to read files within the context of the web-server user account, aka Bug ID CSCup41014...
Code injection
The server in Cisco Unity Connection 9.11 and 9.12 allows remote authenticated users to obtain privileged access by conducting an "HTTP Intercept" attack and leveraging the ability to read files within the context of the web-server user account, aka Bug ID CSCup41014...
CVE-2014-3333
Cisco Unity Connection 9.1(1) and 9.1(2) are affected by CVE-2014-3333, where an authenticated remote attacker can elevate privileges by performing an HTTP Intercept attack and reading files within the web server user context, per Cisco's advisory CSCu p41014. The root cause is improper privilege...
CVE-2014-3333
The server in Cisco Unity Connection 9.11 and 9.12 allows remote authenticated users to obtain privileged access by conducting an "HTTP Intercept" attack and leveraging the ability to read files within the context of the web-server user account, aka Bug ID CSCup41014...