Cisco CUCDM Information Leakage Vulnerability (CVE-2015-0683)
Release date:
Updated on:
Affected Systems:
Cisco uniied Communications Domain Manager 8.1 (4)
Cisco uniied Communications Domain Manager
Description:
CVE (CAN) ID: CVE-2015-0683
Cisco uniied Communications Manager is an enterprise-level IP call handling system.
Cisco Unified Communications Domain Manager Application Software allows local file inclusion when processing unspecified conditions. authenticated remote attackers exploit this vulnerability to access sensitive information.
<* Source: vendor
Link: http://tools.cisco.com/security/center/viewAlert.x? AlertId = 38118
*>
Suggestion:
Vendor patch:
Cisco
-----
Cisco has released a Security Bulletin (alertId = 38118) for this purpose and the corresponding patch:
AlertId = 38118: Cisco uniied Communications Domain Manager Application Software Information Disclosure Vulnerability
Link: http://tools.cisco.com/security/center/viewAlert.x? AlertId = 38118
This article permanently updates the link address: