CVE-2011-2738

Sažetak

Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used in Unified Operations Manager before 8.6 and CiscoWorks LAN Management Solution 3.x and 4.x before 4.1; and multiple EMC Ionix products including Application Connectivity Monitor (Ionix ACM) 2.3 and earlier, Adapter for Alcatel-Lucent 5620 SAM EMS (Ionix ASAM) 3.2.0.2 and earlier, IP Management Suite (Ionix IP) 8.1.1.1 and earlier, and other Ionix products; allow remote attackers to execute arbitrary code via crafted packets to TCP port 9002, aka Bug IDs CSCtn42961 and CSCtn64922, related to a buffer overflow.

Reference

http://secunia.com/advisories/45979
http://secunia.com/advisories/46016
http://secunia.com/advisories/46052
http://secunia.com/advisories/46053
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351e.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351f.shtml
http://www.osvdb.org/75442
http://www.securityfocus.com/archive/1/519646/100/0/threaded
http://www.securityfocus.com/bid/49627
http://www.securityfocus.com/bid/49644
http://www.securitytracker.com/id?1026046
http://www.securitytracker.com/id?1026047
http://www.securitytracker.com/id?1026048
http://www.securitytracker.com/id?1026059
https://exchange.xforce.ibmcloud.com/vulnerabilities/69828

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

09-10-2018 - 19:32

Objavljeno

19-09-2011 - 12:02