CVE-2006-3592

Currently unrated

Key Information:

Vendor
Cisco
Status
Unified Callmanager
Vendor
CVE Published:
18 July 2006

Badges

👾 Exploit Exists🟡 Public PoC

Summary

Unspecified vulnerability in the command line interface (CLI) in Cisco Unified CallManager (CUCM) 5.0(1) through 5.0(3a) allows local users to execute arbitrary commands with elevated privileges via unspecified vectors, involving "certain CLI commands," aka bug CSCse11005.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2006-3592
Created by adenkiewicz

References

http://www.osvdb.org/27160
vdb-entryx_refsource_OSVDB
http://securitytracker.com/id?1016475
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/18952
vdb-entryx_refsource_BID

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.