pioneer
超级版主
积分 4563
发帖 4545
注册 2007-7-16
来自 BJ
|
#1 Cisco产品不特定的未授权访问漏洞
来源
secunia.com
软件名
Cisco Unified Contact Center Enterprise (formerly IPCC) 7.x
Cisco Unified Contact Center Hosted (formerly IPCC) 7.x
Cisco Unified Intelligent Contact Management Enterprise (ICME) 7.x
Cisco Unified Intelligent Contact Management Hosted (ICMH) 7.x
Cisco System Unified Contact Center Enterprise (SUCCE) 7.x
描述
这可恶意绕过特定的安全限制,泄漏特定敏感信息和操控特定数据
由于一个不确定错误,可泄露Windows域用户通过访问中心接口浏览的网页访问记录信息或可访问Web Admin tool(网页管理工具)
该漏洞涉及以下产品
* Cisco Unified Intelligent Contact Management Enterprise (Unified ICME)
* Cisco Unified ICM Hosted (Unified ICMH)
* Cisco Unified Contact Center Enterprise (UCCE)
* Cisco Unified Contact Center Hosted (UCCH)
* Cisco System Unified Contact Center Enterprise (SUCCE)
解决方案
应用补丁
http://tools.cisco.com/support/downloads/go/MDFTree.x?butype=cc
| |
※文章所有权归【pioneer】与【东方微点论坛】共同所有,转载请注明出处!※
|
 |
|
