Computer Security
[EN] no-pyccku

Cisco CiscoWorks Internetwork Performance Monitor buffer overflow
SecurityVulns ID:10547
Threat Level:
Description:Buffer overflow on CORBA GIP request processing.
Affected:CISCO : CiscoWorks IPM 2.6
CVE:CVE-2010-0138 (Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote attackers to execute arbitrary code via a malformed getProcessName CORBA General Inter-ORB Protocol (GIOP) request, related to a "third-party component," aka Bug ID CSCsv62350.)
Original documentdocumentZDI, ZDI-10-004: Cisco CiscoWorks IPM GIOP getProcessName Remote Code Execution Vulnerability (21.01.2010)
 documentCISCO, Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor CORBA GIOP Overflow Vulnerability (21.01.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod