Design/Logic Flaw
/usr/local/cm/bin/pktCapprotectData in Cisco Unified Communications Manager aka CUCM, formerly CallManager 6, 7, and 8 allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in a request to the administrative interface, aka Bug IDs CSCti52041 and...