Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0679

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2014-0679
Last Modified 28 Feb 2014 10:56:55
Published 27 Feb 2014 03:55:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-0679

Summary

Cisco Prime Infrastructure 1.2 and 1.3 before 1.3.0.20-2, 1.4 before 1.4.0.45-2, and 2.0 before 2.0.0.0.294-2 allows remote authenticated users to execute arbitrary commands with root privileges via an unspecified URL, aka Bug ID CSCum71308.

Vulnerable Systems

Application

  • Cisco Prime Infrastructure 1.2.0

  • Cisco Prime Infrastructure 1.2.1

  • Cisco Prime Infrastructure 1.3.0

  • Cisco Prime Infrastructure 1.4.0

  • Cisco Prime Infrastructure 1.4.1

  • Cisco Prime Infrastructure 2.0.0


References

CISCO - 20140226 Cisco Prime Infrastructure Command Execution Vulnerability


Last Updated: 27 May 2016 10:56:45