Users of Cisco Unified Intelligent Contact Management please be advised of a Remote Code Execution vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)
Amplify’d from www.criticalwatch.com
ZDI-10-235: [ZDI-10-235] Cisco ICM Setup Manager Agent.exe HandleUpgradeTrace Remote Code Execution Vulnerabilit
-- Affected Products:
Cisco Unified Intelligent Contact Management
-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
vulnerable installations of Cisco ICM. Authentication is not required to
exploit this vulnerability.
The flaw exists within the Agent.exe component which listens by default
on TCP port 40078. When handling the HandleUpgradeTrace packet type the
process blindly copies user supplied data into a fixed-length buffer on
the stack. A remote attacker can exploit this vulnerability to execute
arbitrary code under the context of the SYSTEM user.Read more at www.criticalwatch.com
See this Amp at http://amplify.com/u/eynb

No comments:
Post a Comment