• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Cisco Unified CallManager Multiple Remote Vulnerabilities

Cisco Unified CallManager is susceptible to multiple remote vulnerabilities. These specific issues are identified:

- A local privilege-escalation vulnerability, documented as Cisco bug CSCse11005
- A local file-overwrite vulnerability, documented as Cisco bug CSCse31704
- A remote buffer-overflow vulnerability, documented as Cisco bug CSCsd96542

These issues allow local attackers to completely compromise affected devices, and remote attackers to execute arbitrary machine code in the context of the affected service.