Vulnerability CVE-2014-0741 - CERT Civis.Net

Vulnerability Name:

CVE-2014-0741 (CCN-91431)

Assigned:

2014-02-25

Published:

2014-02-25

Updated:

2015-07-29

Summary:

The certificate-import feature in the Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum95461.

CVSS v3 Severity:

6.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): None

CVSS v2 Severity:

6.2 Medium (CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:N)
4.6 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): None

6.2 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:N)
4.6 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2014-0741

Source: CCN
Type: Cisco Security Notice
Cisco Unified Communications Manager CAPF Certificate Import Arbitrary File Read/Write Vulnerability

Source: CISCO
Type: Vendor Advisory
20140225 Cisco Unified Communications Manager CAPF Certificate Import Arbitrary File Read/Write Vulnerability

Source: CONFIRM
Type: Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=33046

Source: CCN
Type: BID-65796
Cisco Unified Communications Manager CVE-2014-0741 Local Privilege Escalation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1029843

Source: XF
Type: UNKNOWN
cisco-ucm-cve20140741-info-disc(91431)

Vulnerable Configuration:

Configuration 1:

cpe:/a:cisco:unified_communications_manager:3.3(5):*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:3.3(5)sr1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:3.3(5)sr2a:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.1(3):*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.1(3)sr1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.1(3)sr2:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.1(3)sr3:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.1(3)sr4:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.2:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.2.1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.2.2:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.2.3:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.2.3sr1:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.2.3sr2:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.2.3sr2b:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:4.3:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:10.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:unified_communications_manager:*:*:*:*:*:*:*:* (Version <= 10.0(1))

Denotes that component is vulnerable