CVE-2014-0666

Sažetak

Directory traversal vulnerability in the Send Screen Capture implementation in Cisco Jabber 9.2(.1) and earlier on Windows allows remote attackers to upload arbitrary types of files, and consequently execute arbitrary code, via modified packets, aka Bug ID CSCug48056.

Reference

http://osvdb.org/102122
http://secunia.com/advisories/56331
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0666
http://tools.cisco.com/security/center/viewAlert.x?alertId=32451
http://www.securityfocus.com/bid/64965
http://www.securitytracker.com/id/1029635
https://exchange.xforce.ibmcloud.com/vulnerabilities/90435

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

29-08-2017 - 01:34

Objavljeno

16-01-2014 - 19:55