CERT-In Vulnerability Note CIVN-2008-66
Cisco Unified Customer Voice Portal Privilege Escalation Vulnerability

Original Issue Date: May 28, 2008

Severity Rating: High

System Affected

•  Cisco, Unified Customer Voice Portal    4.0
•  Cisco, Unified Customer Voice Portal    4.1
•  Cisco, Unified Customer Voice Portal    7.0

Overview

An unspecified vulnerability in Cisco Unified Customer Voice Portal (CVP) could allow a remote attacker to gain elevated privileges. An attacker with an administrative role could exploit this vulnerability to create or modify a super-user account and gain complete control over an affected system.

Description

Cisco Unified Customer Voice Portal is a part of Cisco telephony network solution. It facilitates the network management from a central point and gives freedom to a user to retrieve information which he asks by video interaction. The vulnerability found in CVP is due to an improper privilege restriction in the Cisco Voice Portal. A user with Administrator privileges could create, modify, or remove a user account with Super-use r privileges. An attacker could create a new Super-user account and use this account to gain escalated privileges within the affected application.

Solution

Apply appropriate fixed versions as mentioned in CISCO Security Advisory
http://www.cisco.com/en/US/products/products_security_advisory
09186a008099beae.shtml

Vendor Information

Cisco
http://www.cisco.com/en/US/products/products_security_advisory
09186a008099beae.shtml
http://tools.cisco.com/security/center/viewAlert.x?alertId=15885

References

AusCERT
www. auscert .org.au/render.html?it=9322

X-Force
http://xforce.iss.net/xforce/xfdb/42564

Secunia
http://secunia.com/advisories/30289/

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003