CVE-2007-5539 - Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise (ICME), Unified

CVE-2007-5539

Summary

Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise (ICME), Unified ICM Hosted (ICMH), Unified Contact Center Enterprise (UCCE), Unified Contact Center Hosted (UCCH), and System Unified Contact Center Enterprise (SUCCE) 7.1(5) allows remote authenticated users to gain privileges, and read reports or change the SUCCE configuration, via certain web interfaces, aka CSCsj55686.

References

Vulnerable Configurations

cpe:2.3:a:cisco:unified_contact_center_enterprise:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_contact_center_enterprise:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_contact_center_enterprise:7.1\(5\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_contact_center_enterprise:7.1\(5\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_contact_center_hosted:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_contact_center_hosted:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_icm_hosted:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_icm_hosted:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_intelligent_contact_management_enterprise:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_intelligent_contact_management_enterprise:*:*:*:*:*:*:*:*

CVSS

Base:	9.0 (as of 29-07-2017 - 01:33)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	SINGLE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:S/C:C/I:C/A:C

refmap via4

bid	26106
cisco	20071017 Cisco Unified Communications Web-based Management Vulnerability
osvdb	37938
sectrack	1018829
secunia	27214
vupen	ADV-2007-3533
xf	cisco-webview-unauthorized-access(37248)

Last major update

29-07-2017 - 01:33

Published

18-10-2007 - 00:17

Last modified

29-07-2017 - 01:33