CVE

Id
51222  
CVE No.
CVE-2011-3310  
Status
Candidate  
Description
The Home Page component in Cisco CiscoWorks Common Services before 4.1 on Windows, as used in CiscoWorks LAN Management Solution, Cisco Security Manager, Cisco Unified Service Monitor, Cisco Unified Operations Manager, CiscoWorks QoS Policy Manager, and CiscoWorks Voice Manager, allows remote authenticated users to execute arbitrary commands via a crafted URL, aka Bug IDs CSCtq48990, CSCtq63992, CSCtq64011, CSCtq64019, CSCtr23090, and CSCtt25535.  
Phase
Assigned (20110829)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
552486 51222 CVE-2011-3310 CISCO:20111019 CiscoWorks Common Services Arbitrary Command Execution Vulnerability  View
552487 51222 CVE-2011-3310 URL:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-cs  View
552488 51222 CVE-2011-3310 BID:50284  View
552489 51222 CVE-2011-3310 URL:http://www.securityfocus.com/bid/50284  View
552490 51222 CVE-2011-3310 SECUNIA:46533  View
552491 51222 CVE-2011-3310 URL:http://secunia.com/advisories/46533  View
552492 51222 CVE-2011-3310 XF:ciscoworks-common-services-command-exec(70759)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
32461 JVNDB-2011-002701 複数の Cisco 製品におけるディレクトリトラバーサルの脆弱性 Cisco Unified Communications Manager、Cisco Unified Contact Center Express、Cisco Unified IP Interactive Voice Response (Unified IP-IVR) には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2011-3315 51222 7.8 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002701.html  View