infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Beautify description

bug/bundler_fix
jvazquez-r7 2015-01-10 00:02:42 -06:00
parent 9fb4cfb442
commit 5d8167dca6
1 changed files with 6 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
modules/auxiliary/voip/cisco_cucdm_callforward.rb
View File

@ -16,11 +16,10 @@ class Metasploit3 < Msf::Auxiliary
super(update_info(info,
'Name' => 'Viproy CUCDM IP Phone XML Services - Call Forwarding Tool',
'Description' => %q{
The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager (CDM)
in Unified CDM Application Software before 10 does not properly implement access control,
which allows remote attackers to modify user information. This vulnerability can be exploited
for unauthorised call forwarding using this module. This tool can be tested with the fake
voss-xmlservice component of Viproy.
The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager
(CDM) in CDM 10 does not properly implement access control, which allows remote attackers
to modify user information. This module exploits the vulnerability for unauthorized call
forwarding.
},
'Author' => 'fozavci',
'References' =>
@ -31,8 +30,8 @@ class Metasploit3 < Msf::Auxiliary
'License' => MSF_LICENSE,
'Actions' =>
[
[ 'Forward', { 'Description' => 'Enabling the call forwarding for the MAC address.' } ],
[ 'Info', { 'Description' => 'Retrieving the call forwarding information for the MAC address.' } ]
[ 'Forward', { 'Description' => 'Enabling the call forwarding for the MAC address' } ],
[ 'Info', { 'Description' => 'Retrieving the call forwarding information for the MAC address' } ]
],
'DefaultAction' => 'Info'
))