Cisco CallManager (CCM) is the software-based call-processing component of the Cisco IP telephony solution which extends enterprise telephony features and functions to packet telephony network devices such as IP phones, media processing devices, voice-over-IP (VoIP) gateways, and multimedia applications. Cisco CallManager versions with Multi Level Administration (MLA) enabled may be vulnerable to privilege escalation, which may result in read-only users gaining administrative access.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/43331/cisco-sa-20060118-ccmpe.txt
Source: https://packetstormsecurity.com/files/43331/Cisco-Security-Advisory-20060118-ccmpe.html