Privilege Escalation in Cisco Unified Contact Center Products
CVE-2007-5539

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Icm Hosted; Unified Intelligent Contact Management Enterprise; Unified Contact Center Enterprise; Unified Contact Center Hosted
Vendor: CVE Published:; 18 October 2007

Summary

A vulnerability exists in Cisco Unified Intelligent Contact Management systems, allowing remote authenticated users to manipulate SUCCE configurations and access sensitive reports. This security flaw can be exploited through web interfaces, posing risks related to unauthorized actions within the system. It's crucial for users of affected Cisco products to remain vigilant and implement necessary patches to mitigate potential threats.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.vupen.com/english/advisories/2007/3533

vdb-entryx_refsource_VUPEN

http://osvdb.org/37938

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Oct 18, 2007
Vulnerability Reserved
Oct 17, 2007