Computer Security
[EN] securityvulns.ru no-pyccku


Cisco Digital Media Manager multiple security vulnerabilities
Published:04.03.2010
Source:
SecurityVulns ID:10666
Type:remote
Threat Level:
6/10
Description:default credentials, privilege escalation, information leak.
Affected:CISCO : Cisco Digital Media Manager 5.0
 CISCO : Cisco Digital Media Manager 5.1
CVE:CVE-2010-0572 (Cisco Digital Media Manager (DMM) before 5.2 allows remote authenticated users to discover Cisco Digital Media Player credentials via vectors related to reading a (1) error log or (2) stack trace, aka Bug ID CSCtc46050.)
 CVE-2010-0571 (Unspecified vulnerability in Cisco Digital Media Manager (DMM) 5.0.x and 5.1.x allows remote authenticated users to gain privileges via unknown vectors, and consequently execute arbitrary code via a crafted web application, aka Bug ID CSCtc46008.)
 CVE-2010-0570 (Cisco Digital Media Manager (DMM) 5.0.x and 5.1.x has a default password for the Tomcat administration account, which makes it easier for remote attackers to execute arbitrary code via a crafted web application, aka Bug ID CSCta03378.)
Original documentdocumentCISCO, Cisco Security Advisory: Multiple Vulnerabilities in Cisco Digital Media Manager (04.03.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod