Vulnerability CVE-2008-1154 - CERT Civis.Net

Vulnerability Name:

CVE-2008-1154 (CCN-41632)

Assigned:

2008-04-03

Published:

2008-04-03

Updated:

2017-08-08

Summary:

The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unified Communications Manager (CUCM) 5.x and 6.x, Unified Presence 1.x and 6.x, Emergency Responder 2.x, and Mobility Manager 2.x, does not require authentication for requests received from the network, which allows remote attackers to execute arbitrary code via unspecified vectors.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2008-1154

Source: CCN
Type: SA29670
Cisco Unified Communications Disaster Recovery Framework Command Execution

Source: SECUNIA
Type: UNKNOWN
29670

Source: CCN
Type: SECTRACK ID: 1019768
Cisco Unified Communications Disaster Recovery Framework Lets Remote Users Execute Arbitrary Commadns

Source: SECTRACK
Type: UNKNOWN
1019768

Source: CISCO
Type: Patch
20080403 Cisco Unified Communications Disaster Recovery Framework Command Execution Vulnerability

Source: CCN
Type: cisco-sa-20080403-drf
Cisco Security Advisory: Cisco Unified Communications Disaster Recovery Framework Command Execution Vulnerability

Source: CCN
Type: OSVDB ID: 44032
Cisco Unified Communications Disaster Recovery Framework (DRF) Arbitrary Remote Command Execution

Source: BID
Type: UNKNOWN
28591

Source: CCN
Type: BID-28591
Cisco Unified Communications Disaster Recovery Framework Remote Command Execution Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2008-1093

Source: XF
Type: UNKNOWN
cisco-drf-command-execution(41632)

Source: XF
Type: UNKNOWN
cisco-drf-command-execution(41632)

Vulnerable Configuration:

Configuration 1:

cpe:/a:cisco:emergency_responder:2.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:mobility_manager:2.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:5.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:5.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_presence:1.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_presence:6.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:cisco:unified_communications_manager:5.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:5.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_presence_server:1.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_presence_server:6.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:emergency_responder:2.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:mobility_manager:2.0:*:*:*:*:*:*:*

Denotes that component is vulnerable