Lucene search

[email protected]CVE-2012-5417

HistoryNov 02, 2012 - 4:46 a.m.

CVE-2012-5417

2012-11-0204:46:00

CWE-264

[email protected]

web.nvd.nist.gov

cisco

prime

dcnm

remote code execution

jboss

rmi

cve-2012-5417

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

77.2%

JSON

Cisco Prime Data Center Network Manager (DCNM) before 6.1(1) does not properly restrict access to certain JBoss MainDeployer functionality, which allows remote attackers to execute arbitrary commands via JBoss Application Server Remote Method Invocation (RMI) services, aka Bug ID CSCtz44924.

CPENameOperatorVersion
cisco:prime_data_center_network_managercisco prime data center network managereq5.0\(3\)
cisco:prime_data_center_network_managercisco prime data center network managereq6.1\(1a\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2a\)
cisco:prime_data_center_network_managercisco prime data center network managereq4.1\(3\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.1\(1\)
cisco:prime_data_center_network_managercisco prime data center network managereq4.1\(2\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2e\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2\)
cisco:prime_data_center_network_managercisco prime data center network managereq6.1\(1b\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2b\)

CPE	Name	Operator	Version
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.0\(3\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	6.1\(1a\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2a\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	4.1\(3\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.1\(1\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	4.1\(2\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2e\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	6.1\(1b\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2b\)

Rows per page:

1-10 of 181

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121031-dcnm

www.securityfocus.com/bid/56348

www.securitytracker.com/id?1027712

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

77.2%

JSON

Related for CVE-2012-5417

prion1 cisco1 securityvulns1 nessus2