CVE-2007-5468
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Cisco CallManager 5.1.1.3000-5 does not verify the Digest authentication header URI against the Request URI in SIP messages, which allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID (aka "toll fraud and authentication forward attack").
Cisco CallManager 5.1.1.3000-5 no verifica el URI de cabecera de autenticación de resumen contra la URI de petición en mensajes SIP, lo cual permite a atacantes remotos utilizar credenciales de autenticación de resumen rastreadas para invocar números de teléfono de su elección o suplantar el identificador del emisor (también conocido como "fraude de aduana y ataque de reenvío de autenticación").
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-10-15 CVE Reserved
- 2007-10-16 CVE Published
- 2024-08-07 CVE Updated
- 2024-09-26 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://lists.grok.org.uk/pipermail/full-disclosure/2007-October/066581.html | Mailing List | |
| http://lists.grok.org.uk/pipermail/full-disclosure/2007-October/066691.html | Mailing List | |
| http://lists.grok.org.uk/pipermail/full-disclosure/2007-October/066694.html | Mailing List | |
| http://secunia.com/advisories/27231 | Third Party Advisory | |
| http://www.securityfocus.com/bid/26057 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2007/3534 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/37197 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Call Manager Search vendor "Cisco" for product "Call Manager" | 5.1.1.3000 Search vendor "Cisco" for product "Call Manager" and version "5.1.1.3000" | - |
Affected
| ||||||