Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.103805
Category:CISCO
Title:Cisco Unified Computing System Multiple Vulnerabilities
Summary:Cisco Unified Computing System is prone to multiple;vulnerabilities
Description:Summary:
Cisco Unified Computing System is prone to multiple
vulnerabilities

Vulnerability Insight:
This issue is being tracked by Cisco bug IDs:
CSCtc91207
CSCtd32371
CSCtg48206
CSCtq86543
CSCts53746

Vulnerability Impact:
CSCtc91207:
An attacker can exploit this issue to bypass the authentication mechanism
and impersonate other users of the system. This may lead to further
attacks.

CSCtd32371:
Attackers can exploit this issue to execute arbitrary code within the
context of the affected application. Failed exploit attempts will result in
denial-of-service conditions.

CSCtg48206:
Attackers can exploit this issue to cause the service to stop responding
resulting in denial-of-service conditions.

CSCtq86543:
Successful exploits will allow attackers to obtain sensitive information.
This may result in the complete compromise of the system.

CSCts53746:
An attacker can exploit this issue to bypass the authentication mechanism
and gain access to the IP KVM console of the physical or virtual device.
This may lead to further attacks.

Affected Software/OS:
Cisco Unified Computing System 1.0(x)
1.1(x)
1.2(x)
1.3(x)
1.4(x)
2.0(1x) and Prior

Solution:
Update to 2.1.1e

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 59451
BugTraq ID: 59453
BugTraq ID: 59457
BugTraq ID: 59459
BugTraq ID: 59455
Common Vulnerability Exposure (CVE) ID: CVE-2013-1182
Cisco Security Advisory: 20130424 Multiple Vulnerabilities in Cisco Unified Computing System
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-ucsmulti
Common Vulnerability Exposure (CVE) ID: CVE-2013-1183
Common Vulnerability Exposure (CVE) ID: CVE-2013-1184
Common Vulnerability Exposure (CVE) ID: CVE-2013-1185
Common Vulnerability Exposure (CVE) ID: CVE-2013-1186
CopyrightThis script is Copyright (C) 2013 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.