CVE-2010-0138

Sažetak

Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote attackers to execute arbitrary code via a malformed getProcessName CORBA General Inter-ORB Protocol (GIOP) request, related to a "third-party component," aka Bug ID CSCsv62350.

Reference

http://secunia.com/advisories/38230
http://securitytracker.com/id?1023484
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1351d.shtml
http://www.securityfocus.com/bid/37879
http://www.vupen.com/english/advisories/2010/0184
http://www.zerodayinitiative.com/advisories/ZDI-10-004/
https://exchange.xforce.ibmcloud.com/vulnerabilities/55768

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-08-2017 - 01:31

Objavljeno

21-01-2010 - 22:30