EUVD-2010-1597

Malware in sbrugna...

CVE-2019-15259

CVE-2019-15259 affects Cisco Unified Contact Center Express (UCCX) and relates to an HTTP response splitting vulnerability caused by insufficient input validation in certain web-server parameters. An unauthenticated, remote attacker could entice a user to follow a malicious link or intercept a re...

CVE-2017-6722

Cisco Unified Contact Center Express (UCCX) is affected by CVE-2017-6722 via its XMPP service. The issue allows an unauthenticated, remote attacker to masquerade as a legitimate user (Clear Text Authentication Vulnerability) due to how the XMPP service handles authentication. Affected release: 10...

DDIVRT-2011-35 Cisco Unified Contact Center Express Directory Traversal [CVE-2011-3315]

Title ----- DDIVRT-2011-35 Cisco Unified Contact Center Express Directory Traversal CVE-2011-3315 Severity -------- High Date Discovered --------------- August 9, 2011 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: r@b13$ Vulnerability Description...

Cisco Security Advisory: Cisco Unified Contact Center Express Directory Traversal Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Unified Contact Center Express Directory Traversal Vulnerability Advisory ID: cisco-sa-20111026-uccx Revision 1.0 For Public Release 2011 October 26 16:00 UTC GMT +--------------------------------------------------------------------- Summary...

Cisco Security Advisory: Vulnerabilities in Cisco Unified Contact Center Express

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Vulnerabilities in Cisco Unified Contact Center Express Advisory ID: cisco-sa-20100609-uccx Revision 1.0 For Public Release 2010 June 09 1600 UTC GMT +--------------------------------------------------------------------- Summa...

Directory traversal

Directory traversal vulnerability in the bootstrap service in Cisco Unified Contact Center Express UCCX 7.0 before 7.01SR4 and 7.02, unspecified 6.0 versions, and 5.0 before 5.02SR3 allows remote attackers to read arbitrary files via a crafted bootstrap message to TCP port 6295...

CVE-2010-1570

The computer telephony integration CTI server component in Cisco Unified Contact Center Express UCCX 7.0 before 7.01SR4 and 7.02, 6.0 before 6.01SR1, and 5.0 before 5.02SR3 allows remote attackers to cause a denial of service CTI server and Node Manager failure via a malformed CTI message...

CVE-2010-1570

Cisco UCCX CTI server DoS vulnerability (CVE-2010-1570) affects CTI server in UCCX 7.0 (before 7.0(1)SR4 and 7.0(2)), 6.0 (before 6.0(1)SR1), and 5.0 (before 5.0(2)SR3). A malformed CTI message triggers the CTI server and Node Manager to fail, logging out all active agents and causing temporary s...

CVE-2010-1571

CVE-2010-1571 describes a directory traversal in the bootstrap service of Cisco Unified Contact Center Express (UCCX). A crafted bootstrap message to TCP port 6295 can allow an unauthenticated attacker to read arbitrary files on affected systems. Cisco’s advisory shows affected releases across UC...

CVE-2010-1571

Directory traversal vulnerability in the bootstrap service in Cisco Unified Contact Center Express UCCX 7.0 before 7.01SR4 and 7.02, unspecified 6.0 versions, and 5.0 before 5.02SR3 allows remote attackers to read arbitrary files via a crafted bootstrap message to TCP port 6295...