Lucene search

[email protected]CVE-2008-1157

HistoryMar 14, 2008 - 8:44 p.m.

CVE-2008-1157

2008-03-1420:44:00

CWE-20

[email protected]

web.nvd.nist.gov

cisco

ipm

remote execution

vulnerability

cve-2008-1157

7.6 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

85.2%

JSON

Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitrary commands.

CPENameOperatorVersion
cisco:ciscoworks_internetwork_performance_monitorcisco ciscoworks internetwork performance monitoreq2.6

CPE	Name	Operator	Version
cisco:ciscoworks_internetwork_performance_monitor	cisco ciscoworks internetwork performance monitor	eq	2.6

References

secunia.com/advisories/29376

www.cisco.com/warp/public/707/cisco-sa-20080313-ipm.shtml

www.securityfocus.com/bid/28249

www.securitytracker.com/id?1019611

www.vupen.com/english/advisories/2008/0876/references

exchange.xforce.ibmcloud.com/vulnerabilities/41208

7.6 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

85.2%

JSON

Related for CVE-2008-1157

securityvulns2 d21 seebug1 prion1