CVE-2006-3592

Cisco Unified CallManager <5.0(3a) - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3592. PoCs published by adenkiewicz.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2006-3592, targeting Easy File Sharing FTP Server 3.5. The exploit leverages an SEH overwrite vulnerability to achieve remote code execution via a crafted PASS command, using a reverse TCP shell payload.

Description

Unspecified vulnerability in the command line interface (CLI) in Cisco Unified CallManager (CUCM) 5.0(1) through 5.0(3a) allows local users to execute arbitrary commands with elevated privileges via unspecified vectors, involving "certain CLI commands," aka bug CSCse11005.

Exploits (1)

nomisec WORKING POC

by adenkiewicz · poc

https://github.com/adenkiewicz/CVE-2006-3592

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2006-3592, targeting Easy File Sharing FTP Server 3.5. The exploit leverages an SEH overwrite vulnerability to achieve remote code execution via a crafted PASS command, using a reverse TCP shell payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Easy File Sharing FTP Server 3.5

No auth needed

Prerequisites: Network access to the target FTP server · Python environment with pwntools installed

MITRE ATT&CK