PT-2013-5614 · Cisco · Cisco 9900 Unified Ip Phones
Publicado
2013-10-11
·
Atualizado
2016-09-22
·
CVE-2013-5533
CVSS v2.0
6.0
Média
| Vetor | AV:L/AC:H/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco 9900 Unified IP phones (affected versions not specified)
Description
The issue concerns the image-upgrade functionality, which allows local users to gain privileges. This is achieved by placing shell commands in an unspecified
parameter.Recommendations
At the moment, there is no information about a newer version that contains a fix for this issue.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco 9900 Unified Ip Phones