Computer Security
[EN] securityvulns.ru no-pyccku


Cisco CiscoWorks Internetwork Performance Monitor buffer overflow
Published:21.01.2010
Source:
SecurityVulns ID:10547
Type:remote
Threat Level:
6/10
Description:Buffer overflow on CORBA GIP request processing.
Affected:CISCO : CiscoWorks IPM 2.6
CVE:CVE-2010-0138 (Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote attackers to execute arbitrary code via a malformed getProcessName CORBA General Inter-ORB Protocol (GIOP) request, related to a "third-party component," aka Bug ID CSCsv62350.)
Original documentdocumentZDI, ZDI-10-004: Cisco CiscoWorks IPM GIOP getProcessName Remote Code Execution Vulnerability (21.01.2010)
 documentCISCO, Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor CORBA GIOP Overflow Vulnerability (21.01.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod