CVE-2008-2062

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager versions prior to 4.2(3)SR4 Cisco Unified Communications Manager versions 4.3 prior to 4.3(2)SR1

Description The issue allows remote attackers to bypass authentication and obtain cluster configuration information and statistics via a direct TCP connection to the service port.

Recommendations For versions prior to 4.2(3)SR4, update to version 4.2(3)SR4 or later. For versions 4.3 prior to 4.3(2)SR1, update to version 4.3(2)SR1 or later.