CVE-2006-3592

{"id": "CVE-2006-3592", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-07-18T15:37:00.000", "references": [{"url": "http://secunia.com/advisories/21030", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016475", "source": "cve@mitre.org"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20060712-cucm.shtml", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/27160", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/18952", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/2774", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27689", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/21030", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1016475", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20060712-cucm.shtml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.osvdb.org/27160", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/18952", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/2774", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27689", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the command line interface (CLI) in Cisco Unified CallManager (CUCM) 5.0(1) through 5.0(3a) allows local users to execute arbitrary commands with elevated privileges via unspecified vectors, involving \"certain CLI commands,\" aka bug CSCse11005."}, {"lang": "es", "value": "Vulnerabilidad no especificada en la interfaz de l\u00ednea de comando (CLI) en Cisco Unified CallManager (CUCM) 5.0(1) hasta la 5.0(3a) permite a usuarios locales ejecutar comandos de su elecci\u00f3n con privilegios elevados a trav\u00e9s de vectores no especificados, afectando a \"ciertos comandos CLI\", tambi\u00e9n conocido como fallo CSCse11005."}], "lastModified": "2024-11-21T00:13:58.270", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(1\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5865997-F8B2-4ABB-96DF-3AE691A7CE5B"}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(2\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9211420-9F35-4872-879A-5F7CA29C6299"}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7DD4B55-4C68-45CD-988E-D470C26E5E71"}, {"criteria": "cpe:2.3:a:cisco:unified_callmanager:5.0\\(3a\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48C1B081-1FD7-4BBD-84BD-E1E5F80C74FE"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "Upgrade to Cisco Unified CallManager version 5.0(4) :\r\nhttp://www.cisco.com/pcgi-bin/tablebuild.pl/callmgr-50"}