You are here

V-152: Cisco Unified Customer Voice Portal (CVP) Multiple Vulnerabilities

May 9, 2013 - 6:00am

Addthis

PROBLEM:

Multiple vulnerabilities have been reported in Cisco Unified Customer Voice Portal (CVP)

PLATFORM:

The vulnerabilities are reported in versions prior to 9.0.1 ES 11

ABSTRACT:

Various components of Cisco Unified CVP are affected. These vulnerabilities can be exploited independently; however, more than one vulnerability could be exploited on the same device.

REFERENCE LINKS:

Secunia Advisory SA53306
Cisco Advisory ID cisco-sa-20130508-cvp
Cisco Applied Mitigation Bulletin
CVE-2013-1220
CVE-2013-1221
CVE-2013-1222
CVE-2013-1223
CVE-2013-1224
CVE-2013-1225

IMPACT ASSESSMENT:

Medium

DISCUSSION:

1) An error when handling SIP INVITE packets in the CallServer component can be exploited to cause the application stop accepting new calls by sending specially crafted SIP INVITE packets.

2) An unspecified error within the configuration of the Tomcat Web Management component can be exploited to gain administrative access.

3) An unspecified error within the configuration of the Tomcat Web Management component can be exploited to execute otherwise unauthorised user-supplied web applications.

4) An error when handling a certain parameter within the log viewer can be exploited to disclose arbitrary system files by sending a specially crafted request.

5) An error when handling a certain parameter within the Resource Manager component can be exploited to overwrite system files via directory traversal sequences.

6) An error due to a missing check for XML entity expansion within the Resource Manager can be exploited to disclose arbitrary system files by sending a specially crafted request.

IMPACT:

Successful exploitation of these vulnerabilities may have various impacts:

1) Cause the system to not accept new calls
2) Escalate privileges and gain administrator access
3) Execute unauthorized user-supplied web applications
4) Overwrite and/or view system files

SOLUTION:

Vendor recommendation is to Update to version 9.0.1 ES 11

Addthis