← back
CVE-2011-1607

CVE-2011-1607

EPSS 2.3%
Directory traversal vulnerability in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5)su3, 7.x before 7.1(5b)su3, 8.0 before 8.0(3a)su1, and 8.5 before 8.5(1) allows remote authenticated users to upload files to arbitrary directories via a modified pathname in an upload request, aka Bug ID CSCti81603.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/fulldisclosure/2011-05/0051.htmlhttp://secunia.com/advisories/44331https://exchange.xforce.ibmcloud.com/vulnerabilities/67127http://www.cisco.com/en/US/products/products_security_advisory09186a0080b79904.shtmlhttp://www.securityfocus.com/bid/47608http://www.securitytracker.com/id?1025449http://www.vupen.com/english/advisories/2011/1122