Cisco Unified Communications Manager (CUCM, formerly CallManager) and Unified Presence Server (CUPS) allow remote attackers to obtain sensitive information via unspecified vectors that reveal the SNMP community strings and configuration settings, aka (1) CSCsj20668 and (2) CSCsj25962.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Unified_communications_manager | Cisco | 5.0 (including) | 5.0 (including) |
| Unified_communications_manager | Cisco | 5.1(1) (including) | 5.1(1) (including) |
| Unified_communications_manager | Cisco | 5.1(2) (including) | 5.1(2) (including) |
| Unified_presence_server | Cisco | 1.0 (including) | 1.0 (including) |
| Unified_presence_server | Cisco | 1.0(1) (including) | 1.0(1) (including) |
| Unified_presence_server | Cisco | 1.0(2) (including) | 1.0(2) (including) |
| Unified_presence_server | Cisco | 1.0(3) (including) | 1.0(3) (including) |
References
- http://osvdb.org/36124
- http://secunia.com/advisories/26039
- http://securitytracker.com/id?1018368
- http://www.cisco.com/warp/public/707/cisco-sa-20070711-voip.shtml
- http://www.securityfocus.com/bid/24867
- http://www.vupen.com/english/advisories/2007/2511
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35344
- http://osvdb.org/36124
- http://secunia.com/advisories/26039
- http://securitytracker.com/id?1018368
- http://www.cisco.com/warp/public/707/cisco-sa-20070711-voip.shtml
- http://www.securityfocus.com/bid/24867
- http://www.vupen.com/english/advisories/2007/2511
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35344