PT-2013-2959 · Microsoft+1 · Windows+1
Publicado
2013-04-25
·
Atualizado
2018-10-30
·
CVE-2013-1192
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Device Manager for Cisco MDS 9000 devices versions prior to 5.2.8
Cisco Device Manager for Cisco Nexus 5000 devices (affected versions not specified)
Description
The issue allows remote attackers to execute arbitrary commands on Windows client machines via a crafted
element-manager.jnlp file.Recommendations
For Cisco Device Manager for Cisco MDS 9000 devices versions prior to 5.2.8, update to version 5.2.8 or later.
For Cisco Device Manager for Cisco Nexus 5000 devices, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Device Manager
Windows