CVE-2013-1224

Name of the Vulnerable Software and Affected Versions Cisco Unified Customer Voice Portal (CVP) Software versions prior to 9.0.1 ES 11

Description The issue is related to a directory traversal vulnerability in the Resource Manager. This allows remote attackers to overwrite arbitrary files by sending crafted HTTP or HTTPS requests that trigger incorrect parameter validation.

Recommendations For versions prior to 9.0.1 ES 11, update to version 9.0.1 ES 11 or later to resolve the issue. As a temporary workaround, consider restricting access to the Resource Manager to minimize the risk of exploitation.