Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2042

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-2042
Last Modified 14 May 2012 12:00:00
Published 21 Oct 2011 10:59:19
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-2042

Summary

The Sybase SQL Anywhere database component in Cisco CiscoWorks Common Services 3.x and 4.x before 4.1 allows remote attackers to obtain potentially sensitive information about the engine name and database port via an unspecified request to UDP port 2638, aka Bug ID CSCsk35018.

Vulnerable Systems

Application

  • Ciscoworks Common Services 3.0

  • Ciscoworks Common Services 3.0.3

  • Ciscoworks Common Services 3.0.4

  • Ciscoworks Common Services 3.0.5

  • Ciscoworks Common Services 3.0.6

  • Ciscoworks Common Services 3.1

  • Ciscoworks Common Services 3.1.1

  • Ciscoworks Common Services 3.2

  • Ciscoworks Common Services 3.3

  • Ciscoworks Common Services 4.0.1


References

CONFIRM - http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_common_services_software/3.3/release/notes/cs33rel.html


Last Updated: 27 May 2016 10:56:53