Computer Security
[EN] securityvulns.ru no-pyccku


Cisco Video Surveillance Manager multiple security vulnerabilities
Published:29.07.2013
Source:
SecurityVulns ID:13222
Type:remote
Threat Level:
6/10
Description:Directory traversal, authentication bypass.
Affected:CISCO : Video Surveillance Manager 7.0
CVE:CVE-2013-3431 (Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv40169.)
 CVE-2013-3430 (Cisco Video Surveillance Manager (VSM) before 7.0.0 allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv37288.)
 CVE-2013-3429 (Multiple directory traversal vulnerabilities in Cisco Video Surveillance Manager (VSM) before 7.0.0 allow remote attackers to read system files via a crafted URL, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv37163.)
Files:Multiple Vulnerabilities in the Cisco Video Surveillance Manager

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod