2 matches found
CVE-2013-3426
The Serviceability servlet on Cisco 9900 IP phones does not properly restrict paths, which allows remote attackers to read arbitrary files by specifying a pathname in a file request, aka Bug ID CSCuh52810...
CVE-2013-3426
CVE-2013-3426 affects Cisco 9900 Series IP phones: the Serviceability servlet does not properly restrict path values, enabling a remote attacker to read arbitrary files by supplying a pathname in a file request (Bug CSCuh52810). The issue is described as unauthenticated remote access with potenti...