Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2738

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-2738
Last Modified 06 Oct 2011 12:00:00
Published 19 Sep 2011 08:02:55
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-2738

Summary

Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used in Unified Operations Manager before 8.6 and CiscoWorks LAN Management Solution 3.x and 4.x before 4.1; and multiple EMC Ionix products including Application Connectivity Monitor (Ionix ACM) 2.3 and earlier, Adapter for Alcatel-Lucent 5620 SAM EMS (Ionix ASAM) 3.2.0.2 and earlier, IP Management Suite (Ionix IP) 8.1.1.1 and earlier, and other Ionix products; allow remote attackers to execute arbitrary code via crafted packets to TCP port 9002, aka Bug IDs CSCtn42961 and CSCtn64922, related to a buffer overflow.

Vulnerable Systems

Application

  • Cisco Unified Operations Manager 1.0

  • Cisco Unified Operations Manager 1.1

  • Cisco Unified Operations Manager 2.0

  • Cisco Unified Operations Manager 2.0.1

  • Cisco Unified Operations Manager 2.0.2

  • Cisco Unified Operations Manager 2.0.3

  • Cisco Unified Operations Manager 2.1

  • Cisco Unified Operations Manager 2.2

  • Cisco Unified Operations Manager 2.3

  • Cisco Unified Operations Manager 8.0

  • Cisco Unified Operations Manager 8.5

  • Cisco Unified Service Monitor 1.1

  • Cisco Unified Service Monitor 2.0

  • Cisco Unified Service Monitor 2.0.1

  • Cisco Unified Service Monitor 2.1

  • Cisco Unified Service Monitor 2.2

  • Cisco Unified Service Monitor 2.3

  • Cisco Unified Service Monitor 8.0

  • Cisco Unified Service Monitor 8.5

  • Ciscoworks Lan Management Solution 3.0

  • Ciscoworks Lan Management Solution 3.1

  • Ciscoworks Lan Management Solution 3.2

  • Ciscoworks Lan Management Solution 4.0

  • Ciscoworks Lan Management Solution 4.0.1

  • Emc Ionix Acm 2.3

  • Emc Ionix Asam 3.2.0.2

  • Emc Ionix Ip 8.1.1.1


References

XF - cisco-unspecified-code-execution(69828)

SECTRACK - 1026059

SECTRACK - 1026048

SECTRACK - 1026047

SECTRACK - 1026046

BID - 49644

BID - 49627

BUGTRAQ - 20110914 ESA-2011-029: Buffer overflow vulnerability in multiple EMC Ionix products

OSVDB - 75442

CISCO - 20110914 CiscoWorks LAN Management Solution Remote Code Execution Vulnerabilities

CISCO - 20110914 Cisco Unified Service Monitor and Cisco Unified Operations Manager Remote Code Execution Vulnerabilities

SECUNIA - 46053

SECUNIA - 46052

SECUNIA - 46016

SECUNIA - 45979


Last Updated: 27 May 2016 10:57:05