Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.105583
Category:CISCO
Title:Cisco FirePOWER Management Center Unauthenticated Information Disclosure Vulnerability
Summary:A vulnerability in the Cisco FirePOWER Management Center could allow an; unauthenticated, remote attacker to obtain information about the Cisco FirePOWER Management Center software; version from the device login page.
Description:Summary:
A vulnerability in the Cisco FirePOWER Management Center could allow an
unauthenticated, remote attacker to obtain information about the Cisco FirePOWER Management Center software
version from the device login page.

Vulnerability Insight:
The vulnerability is due to verbose output returned when HTML files are
retrieved from the affected system.

Vulnerability Impact:
An attacker could exploit this vulnerability by reading the information
disclosed in the help files to conduct further attacks.

Affected Software/OS:
Cisco FirePOWER Management Center 5.3 through 6.0.0.1.

Solution:
See vendor advisory

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-6411
BugTraq ID: 78740
http://www.securityfocus.com/bid/78740
Cisco Security Advisory: 20151209 Cisco FirePOWER Management Center Software Version Information Disclosure Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-fmc
CopyrightCopyright (C) 2016 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.