Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services before 4.0 allow remote attackers to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.
AV:N/AC:L/Au:N/C:C/I:C/A:CCisco Ciscoworks Common Services
APPCisco3.0.53.0.63.13.1.13.23.3Cisco Ciscoworks Lan Management Solution
APPCisco2.63.03.13.2Cisco Qos Policy Manager
APPCisco4.04.0.14.0.2Cisco Security Manager
APPCisco3.0.23.2Cisco Telepresence Readiness Assessment Manager
APPCisco1.0Cisco Unified Operations Manager
APPCisco2.0.12.0.22.0.3Cisco Unified Service Monitor
APPCisco2.0.1
Related vulnerabilities
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote attacker to gain access to se...
A vulnerability in the Java deserialization function used by Cisco Security Manager could allow an unauthentic...
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote attacker to access sensitive ...
Multiple vulnerabilities in the Java deserialization function that is used by Cisco Security Manager could all...
The Home Page component in Cisco CiscoWorks Common Services before 4.1 on Windows, as used in CiscoWorks LAN M...