Vulnerability Name:

CVE-2010-3039 (CCN-63046)

Assigned:2010-11-03
Published:2010-11-03
Updated:2018-10-10
Summary:/usr/local/cm/bin/pktCap_protectData in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6, 7, and 8 allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in a request to the administrative interface, aka Bug IDs CSCti52041 and CSCti74930.
CVSS v3 Severity:8.2 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
5.9 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
5.9 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-78
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2010-3039

Source: FULLDISC
Type: Exploit
20101105 nSense-2010-003: Cisco Unified Communications Manager

Source: CCN
Type: SA42129
Cisco Unified Communications Manager Privilege Escalation Vulnerability

Source: SECUNIA
Type: Vendor Advisory
42129

Source: CCN
Type: SECTRACK ID: 1024694
Cisco Unified Communications Manager setuid Binary Lets Local Users Gain Root Privileges

Source: CCN
Type: Cisco IntelliShield ID: 21656
Cisco Unified Communications Manager Command Line Privilege Escalation Vulnerability

Source: CONFIRM
Type: Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=21656

Source: MISC
Type: Exploit
http://www.nsense.fi/advisories/nsense_2010_003.txt

Source: CCN
Type: OSVDB ID: 69158
Cisco Unified Communications Manager /usr/local/cm/bin/pktCap_protectData Privilege Escalation

Source: BUGTRAQ
Type: UNKNOWN
20101105 nSense-2010-003: Cisco Unified Communications Manager

Source: BID
Type: Exploit
44672

Source: CCN
Type: BID-44672
Cisco Unified Communications Manager Invalid Argument Privilege Escalation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1024694

Source: VUPEN
Type: Vendor Advisory
ADV-2010-2915

Source: XF
Type: UNKNOWN
cucm-pktcapprotectdata-command-exec(63046)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(1):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(1a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(1b):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(2):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(2)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(2)su1a:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(3):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(3a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(3b):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(3b)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(4):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(4)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(4a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(4a)su2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(5):*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:cisco:unified_communications_manager:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(1)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(1)su1a:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(2):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(2a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(2a)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(2a)su2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(2a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(2a)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(2b):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(2b)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(3):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(3a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(3a)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(3a)su1a:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(3b):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(3b)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(3b)su2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(5):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(5)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(5)su1a:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(5a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1(5b):*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/a:cisco:unified_communications_manager:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:8.0(2c):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:8.0(2c)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:8.0(3):*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:cisco:unified_communications_manager:6.0(1a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(1a):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(1):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.0(1):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(2)su1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(2):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(1):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(1b):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:6.1(2)su1a:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.0(2):*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_communications_manager:8.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    cisco unified communications manager 6.0
    cisco unified communications manager 6.1(1)
    cisco unified communications manager 6.1(1a)
    cisco unified communications manager 6.1(1b)
    cisco unified communications manager 6.1(2)
    cisco unified communications manager 6.1(2)su1
    cisco unified communications manager 6.1(2)su1a
    cisco unified communications manager 6.1(3)
    cisco unified communications manager 6.1(3a)
    cisco unified communications manager 6.1(3b)
    cisco unified communications manager 6.1(3b)su1
    cisco unified communications manager 6.1(4)
    cisco unified communications manager 6.1(4)su1
    cisco unified communications manager 6.1(4a)
    cisco unified communications manager 6.1(4a)su2
    cisco unified communications manager 6.1(5)
    cisco unified communications manager 7.0
    cisco unified communications manager 7.0(1)su1
    cisco unified communications manager 7.0(1)su1a
    cisco unified communications manager 7.0(2)
    cisco unified communications manager 7.0(2a)
    cisco unified communications manager 7.0(2a)su1
    cisco unified communications manager 7.0(2a)su2
    cisco unified communications manager 7.1(2a)
    cisco unified communications manager 7.1(2a)su1
    cisco unified communications manager 7.1(2b)
    cisco unified communications manager 7.1(2b)su1
    cisco unified communications manager 7.1(3)
    cisco unified communications manager 7.1(3a)
    cisco unified communications manager 7.1(3a)su1
    cisco unified communications manager 7.1(3a)su1a
    cisco unified communications manager 7.1(3b)
    cisco unified communications manager 7.1(3b)su1
    cisco unified communications manager 7.1(3b)su2
    cisco unified communications manager 7.1(5)
    cisco unified communications manager 7.1(5)su1
    cisco unified communications manager 7.1(5)su1a
    cisco unified communications manager 7.1(5a)
    cisco unified communications manager 7.1(5b)
    cisco unified communications manager 8.0
    cisco unified communications manager 8.0(2c)
    cisco unified communications manager 8.0(2c)su1
    cisco unified communications manager 8.0(3)
    cisco unified communications manager 6.0(1a)
    cisco unified communications manager 6.0
    cisco unified communications manager 6.1(1a)
    cisco unified communications manager 6.1
    cisco unified communications manager 6.1(1)
    cisco unified communications manager 6.0(1)
    cisco unified communications manager 6.1(2)su1
    cisco unified communications manager 6.1(2)
    cisco unified communications manager 7.0
    cisco unified communications manager 6.1.0
    cisco unified communications manager 7.0(1)
    cisco unified communications manager 6.1(1b)
    cisco unified communications manager 6.1(2)su1a
    cisco unified communications manager 7.0(2)
    cisco unified communications manager 7.1
    cisco unified communications manager 8.0