CVE-2010-1571: Path Traversal
First published: Thu Jun 10 2010(Updated: )
Directory traversal vulnerability in the bootstrap service in Cisco Unified Contact Center Express (UCCX) 7.0 before 7.0(1)SR4 and 7.0(2), unspecified 6.0 versions, and 5.0 before 5.0(2)SR3 allows remote attackers to read arbitrary files via a crafted bootstrap message to TCP port 6295.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified Contact Center Express | =5.0 | |
| Cisco Unified Contact Center Express | =6.0 | |
| Cisco Unified Contact Center Express | =7.0 | |
| Cisco Customer Response Solution | =5.0 | |
| Cisco Customer Response Solution | =6.0 | |
| Cisco Customer Response Solution | =7.0 | |
| Cisco Unified IP Interactive Voice Response | =5.0 | |
| Cisco Unified IP Interactive Voice Response | =6.0 | |
| Cisco Unified IP Interactive Voice Response | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- collector/nvd-historical
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco unified contact center express
- version/cisco unified contact center express/5.0
- version/cisco unified contact center express/6.0
- version/cisco unified contact center express/7.0
- canonical/cisco customer response solution
- version/cisco customer response solution/5.0
- version/cisco customer response solution/6.0
- version/cisco customer response solution/7.0
- canonical/cisco unified ip interactive voice response
- version/cisco unified ip interactive voice response/5.0
- version/cisco unified ip interactive voice response/6.0
- version/cisco unified ip interactive voice response/7.0