CVE-2007-4634

Cisco CallManager/CUCM <3.3.5sr2b-4.3.1sr1 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4634. PoCs published by anonymous.

AI-analyzed exploit summary This exploit demonstrates SQL injection vulnerabilities in Cisco Unified CallManager and Unified Communications Manager. It provides multiple proof-of-concept URIs to extract database information, including the logged-in user, database name, and call details.

Description

Multiple SQL injection vulnerabilities in Cisco CallManager and Unified Communications Manager (CUCM) before 3.3(5)sr2b, 4.1 before 4.1(3)sr5, 4.2 before 4.2(3)sr2, and 4.3 before 4.3(1)sr1 allow remote attackers to execute arbitrary SQL commands via the lang variable to the (1) user or (2) admin logon page, aka CSCsi64265.

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · textwebappsasp

https://www.exploit-db.com/exploits/30541

View Code ZIP pw:eip

This exploit demonstrates SQL injection vulnerabilities in Cisco Unified CallManager and Unified Communications Manager. It provides multiple proof-of-concept URIs to extract database information, including the logged-in user, database name, and call details.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Cisco Unified CallManager and Unified Communications Manager

No auth needed

Prerequisites: Network access to the target application

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1018624

Vendor Advisory vendor-advisory x_refsource_cisco

http://www.cisco.com/en/US/products/products_security_advisory09186a00808ae327.shtml

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/26641

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/36326

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/25480

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/3010

Scores

EPSS 0.0159

EPSS Percentile 81.9%

Details

CWE

CWE-89

Status published

Products (31)

cisco/call_manager 3.3\(5\)sr1

cisco/call_manager 3.3\(5\)sr2

cisco/call_manager 3.3\(5\)sr2a

cisco/call_manager 4.1

cisco/call_manager 4.1\(3\)sr1

cisco/call_manager 4.1\(3\)sr2

cisco/call_manager 4.1\(3\)sr3

cisco/call_manager 4.1\(3\)sr4

cisco/call_manager 4.2

cisco/call_manager 4.2\(1\)

... and 21 more

Published Aug 31, 2007

Tracked Since Feb 18, 2026