CVE-2013-3403

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager versions 7.1(x) through 9.1(1a)

Description The issue is related to multiple untrusted search path vulnerabilities that allow local users to gain privileges. This is achieved by leveraging unspecified file-permission and environment-variable issues for privileged programs.

Recommendations For versions 7.1(x) through 9.1(1a), consider restricting access to privileged programs until a fix is available. As a temporary workaround, review and secure file permissions and environment variables to minimize the risk of exploitation.