Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco Personal Assistant 1.4(1) and 1.4(2) disables password authentication when "Allow Only Cisco CallManager Users" is enabled and the Corporate Directory settings refer to the directory service being used by Cisco CallManager, which allows remote attackers to gain access with a valid username.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Personal Assistant用户密码验证可绕过漏洞
Vulnerability Description
Cisco Personal Assistant是一款基于Microsoft Windows 2000的应用程序,是AVVID解决方案的一部分。 Cisco Personal Assistant允许通过WEB接口未授权访问用户配置,远程攻击者可以利用这个漏洞更改用户参数和配置。 此漏洞只在下面的条件成立时才存在: 1、Personal Assistant管理员在System -> Miscellaneous Settings中勾了"Allow Only Cisco CallManager Users"。
CVSS Information
N/A
Vulnerability Type
N/A