Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1157

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-1157
Last Modified 07 Mar 2011 10:06:02
Published 14 Mar 2008 04:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1157

Summary

Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitrary commands.

Vulnerable Systems

Application

  • Ciscoworks Internetwork Performance Monitor 2.6


References

BID - 28249

CISCO - 20080313 CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability

XF - cisco-ciscoworks-ipm-command-execution(41208)

VUPEN - ADV-2008-0876

SECTRACK - 1019611

SECUNIA - 29376


Last Updated: 27 May 2016 10:47:02