CERT-In Advisory CIAD-2006-20
Vulnerabilities in Cisco unified call Manager

Original issue date: July 14, 2006

Severity Rating: High

Systems Affected

Cisco Unified CallManager versions 5.0(1), 5.0(2), 5.0(3) and 5.0(3a)

Overview

Multiple vulnerabilities have been reported in Cisco Unified CallManager. This could allow privilege escalation by local users or launch a Denial of Service attacks.

Description

Cisco Unified CallManager is the software-based call-processing component of the Cisco IP telephony solution. It contains buffer overflow vulnerability in the processing of excessively long hostnames which may be included in a SIP request.

The CallManager CLI provides a backup management interface to the system in order to diagnose and troubleshoot the primary HTTPS-based management interfaces. The CallManager, CLI which runs as the root user, contains two vulnerabilities in the parsing of commands.

The first vulnerability may allow an authenticated CUCM administrator to execute arbitrary operating system programs as the root user. The second vulnerability may allow output redirection of a command to a file or a folder specified on the command line.

Solution

Update to version 5.0(4) or later. Refer Cisco Security Advisory cisco-sa-20060712-cucm
http://www.cisco.com/warp/public/707/cisco-sa-20060712-cucm.shtml

Vendor Information

Cisco
http://www.cisco.com/warp/public/707/cisco-sa-20060712-cucm.shtml

References

Secunia
http://secunia.com/advisories/21030/

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91 11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003