CVE-2019-15972 PoC — Cisco Unified Communications Manager SQL注入漏洞

Source

https://github.com/FSecureLABS/Cisco-UCM-SQLi-Scripts

Associated Vulnerability

Title:Cisco Unified Communications Manager SQL注入漏洞 (CVE-2019-15972)
Description:Cisco Unified Communications Manager（CUCM，Unified CM，CallManager）是美国思科（Cisco）公司的一款统一通信系统中的呼叫处理组件。该组件提供了一种可扩展、可分布和高可用的企业IP电话呼叫处理解决方案。 Cisco Unified Communications Manager 11.5(1)SU6及之前版本和12.5(1)SU1及之前版本中的Web管理界面存在SQL注入漏洞。攻击者可借助恶意请求利用该漏洞修改底层数据库上的值或来自底层数据库的返

Description

Scripts that can be used to exploit CVE-2019-15972 which was an Authenticated SQLi issue in Cisco Unified Call Manager (UCM).

Readme

# CVE-2019-15972 Cisco UCM SQLi Scripts
Scripts that can be used to exploit CVE-2019-15972 which was an Authenticated SQLi issue in Cisco Unified Call Manager (UCM).

* Enumerate tables - enumerate all tables on the underlying database and place the table names in a text file
* Extract tables - take the list of tables and extract the contents of each table
* Related F-Secure advisory can be found here: https://labs.f-secure.com/advisories/cisco-ucm-informix-sql-injection/
* Details on how this vulnerability was discovered and exploited can be found here: https://labs.f-secure.com/blog/uncommon-sql-database-alert-informix-sql-injection/

File Snapshot


 [4.0K]  /data/pocs/c7f9d73f8dd9cfe6503e87b66758cc4174d8bf1a
├── [ 644]  README.md
├── [ 17K]  sql_injection_enumerate_tables.py
└── [ 33K]  sql_injection_extract_table.py

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!