CVE-2006-3592

Cisco Unified CallManager <5.0(3a) - Privilege Escalation

Title source: llm

Description

Unspecified vulnerability in the command line interface (CLI) in Cisco Unified CallManager (CUCM) 5.0(1) through 5.0(3a) allows local users to execute arbitrary commands with elevated privileges via unspecified vectors, involving "certain CLI commands," aka bug CSCse11005.

Exploits (1)

nomisec WORKING POC

by adenkiewicz · poc

https://github.com/adenkiewicz/CVE-2006-3592

View Code ZIP pw:eip

References (7)

Core 7

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/27160

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1016475

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/18952

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/27689

Vendor Advisory vendor-advisory x_refsource_cisco

http://www.cisco.com/warp/public/707/cisco-sa-20060712-cucm.shtml

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/2774

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21030

Scores

EPSS 0.0093

EPSS Percentile 76.2%

Details

Status published

Products (4)

cisco/unified_callmanager 5.0\(1\)

cisco/unified_callmanager 5.0\(2\)

cisco/unified_callmanager 5.0\(3\)

cisco/unified_callmanager 5.0\(3a\)

Published Jul 18, 2006

Tracked Since Feb 18, 2026