2 matches found
Cisco Unity Remote Administration Authentication Bypass (cisco-sa-20081008-unity)
According to its self-reported version number, the installation of Cisco Unity on the remote host may be affected by an authentication bypass vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Additionally,...
Cisco Unity远程管理验证绕过漏洞
BUGTRAQ ID: 31638 CVE ID:CVE-2008-3814 CNCVE ID:CNCVE-20083814 Cisco Unity是一款面向企业级机构的统一通信解决方案。 Cisco Unity WEB接口验证实现存在问题,远程攻击者可以利用漏洞访问受限制资源。 第一次尝试连接任意特定链接,会重定向到验证页,但是任意后续的尝试会导致无需要合法登录验证凭证而成功访问,攻击者借此可获得敏感信息或可编辑配置。 Cisco Unity 7.0 Cisco Unity 5.0 Cisco Unity 4.0 Cisco将发布补丁来提供解决方案,请用户关注供应商进度:...