CVE-2012-5417

Name of the Vulnerable Software and Affected Versions Cisco Prime Data Center Network Manager (DCNM) versions prior to 6.1(1)

Description The issue allows remote attackers to execute arbitrary commands via JBoss Application Server Remote Method Invocation (RMI) services due to improper access restriction to certain JBoss MainDeployer functionality.

Recommendations For versions prior to 6.1(1), update to version 6.1(1) or later to resolve the issue. As a temporary workaround, consider restricting access to JBoss Application Server Remote Method Invocation (RMI) services until a patch is available.