CVE-2011-2738

Name of the Vulnerable Software and Affected Versions Cisco Unified Service Monitor versions prior to 8.6 CiscoWorks LAN Management Solution versions 3.x and 4.x prior to 4.1 EMC Ionix Application Connectivity Monitor (Ionix ACM) version 2.3 and earlier EMC Ionix Adapter for Alcatel-Lucent 5620 SAM EMS (Ionix ASAM) version 3.2.0.2 and earlier EMC Ionix IP Management Suite (Ionix IP) version 8.1.1.1 and earlier

Description The issue allows remote attackers to execute arbitrary code via crafted packets to TCP port 9002, related to a buffer overflow. This can be exploited by sending specially crafted packets to the vulnerable system.

Recommendations For Cisco Unified Service Monitor versions prior to 8.6, update to version 8.6 or later. For CiscoWorks LAN Management Solution versions 3.x and 4.x prior to 4.1, update to version 4.1 or later. For EMC Ionix Application Connectivity Monitor (Ionix ACM) version 2.3 and earlier, update to a version later than 2.3. For EMC Ionix Adapter for Alcatel-Lucent 5620 SAM EMS (Ionix ASAM) version 3.2.0.2 and earlier, update to a version later than 3.2.0.2. For EMC Ionix IP Management Suite (Ionix IP) version 8.1.1.1 and earlier, update to a version later than 8.1.1.1. As a temporary workaround, consider restricting access to TCP port 9002 until a patch is available.