Vulnslist

find the latest Cisco vulnerabilities

Multiple Vulnerabilities in Cisco Unity Connection

cisco-sa-20120229-cuc · Critical · Published · Updated

Cisco Unity Connection contains two vulnerabilities: Cisco Unity Connection Privilege Escalation Vulnerability Cisco Unity Connection Denial of Service Vulnerability Exploitation of the Cisco Unity Connection Privilege Escalation Vulnerability may allow an authenticated, remote attacker to elevate privileges and obtain full access to the affected system. Exploitation of the Cisco Unity Connection Denial of Service Vulnerability  may allow an unauthenticated, remote attacker to cause system services to terminate unexpectedly, which may result in a denial of service condition. Cisco has released software updates that address these vulnerabilities. There are no workarounds that mitigate these vulnerabilities. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-cuc

Cisco advisory ·CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2012-0366, CVE-2012-0367
Cisco Bug IDsCSCtd45141, CSCtq67899
CVSS ScoreBase 9.0
Base 9.0 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:F/RL:OF/RC:C
Base 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source
Cisco Unity Connection

Related Products

Product CVE Evidence
Cisco RV Series Routers CVE-2012-0367 Cisco OpenVuln
Cisco RV Series Routers CVE-2012-0366 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2012-0367 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2012-0366 Cisco OpenVuln
Cisco Unity Connection CVE-2012-0367 Cisco OpenVuln
Cisco Unity Connection CVE-2012-0366 Cisco OpenVuln
Cisco Unity CVE-2012-0367 Cisco OpenVuln
Cisco Unity CVE-2012-0366 Cisco OpenVuln