Cisco Unified Communications Manager 'CTIManager' Remote Command Execution (CSCum95491)

high Nessus Plugin ID 77987

Synopsis

The remote host is affected by an arbitrary command execution vulnerability.

Description

According to its self-reported version, the remote Cisco Unified Communications Manager (CUCM) device has a flaw in the 'CTIManager' module that allows a remote, authenticated attacker to execute arbitrary commands with elevated privileges by using a specially crafted SSO token.

Solution

Upgrade to a fixed CUCM version listed in the vendor's advisory.

See Also

http://www.nessus.org/u?489ea93b

Plugin Details

Severity: High

ID: 77987

File Name: cisco_cucm_CSCum95491.nasl

Version: 1.8

Type: combined

Family: CISCO

Published: 9/30/2014

Updated: 4/11/2022

Configuration: Enable paranoid mode, Enable thorough checks

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 8.5

Temporal Score: 6.3

Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C

Temporal Vector: E:U/RL:OF/RC:C

CVSS Score Source: CVE-2014-3338

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:cisco:unified_communications_manager

Required KB Items: Host/Cisco/CUCM/Version, Host/Cisco/CUCM/Version_Display, Settings/ParanoidReport

Exploit Ease: No known exploits are available

Patch Publication Date: 8/11/2014

Vulnerability Publication Date: 8/11/2014

Reference Information

CVE: CVE-2014-3338

BID: 69176

CISCO-BUG-ID: CSCum95491