CVE-2013-3434
CVE-2013-3434 affects Cisco Unified Communications Manager (CUCM) versions 7.1.x through 9.1(1a). The root cause is an untrusted search path due to unspecified file-permission and environment-variable issues on privileged programs (Bug CSCui02242). This enables local privilege escalation for auth...