NVD

Id
53270  
Name
CVE-2007-1062  
Description
The Cisco Unified IP Conference Station 7935 3.2(15) and earlier, and Station 7936 3.3(12) and earlier does not properly handle administrator HTTP sessions, which allows remote attackers to bypass authentication controls via a direct URL request to the administrative HTTP interface for a limited time  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-02-21  
Modified Date
2011-07-18  
Seq
2007-1062  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
269675 53270 CVE-2007-1062 1017680  View
269676 53270 CVE-2007-1062 20070221 Identifying and Mitigating Exploitation of Cisco Unified IP Conference Station and IP Phone Vulnerabilities  View
269677 53270 CVE-2007-1062 20070221 Cisco Unified IP Conference Station and IP Phone Vulnerabilities  View
269678 53270 CVE-2007-1062 22647  View
269679 53270 CVE-2007-1062 ADV-2007-0688  View
269680 53270 CVE-2007-1062 cisco-unified-ip-conference-url-auth-bypass(32623)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52905 JVNDB-2007-001597 Cisco Unified IP Conference Station 7935 などにおける認証制御を回避される脆弱性 Cisco Unified IP Conference Station 7935 および 7936 は、管理者の HTTP セッションを適切に処理しないため、認証制御を回避される脆弱性が存在します。 CVE-2007-1062 24417 CVE-2007-1062 53270 10 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001597.html 2007-02-21 2012-06-26 View