Lucene search
HistoryMay 20, 2011 - 10:55 p.m.
CVE-2011-0966
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:C/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.082
Percentile
94.4%
Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and earlier allows remote attackers to read arbitrary files via a … (dot dot) in the file parameter, aka Bug ID CSCto35577.
Affected configurations
Node
ciscociscoworks_common_servicesRange≤3.3
ORciscociscoworks_common_servicesMatch1.0
ORciscociscoworks_common_servicesMatch2.2
ORciscociscoworks_common_servicesMatch3.0
ORciscociscoworks_common_servicesMatch3.0.3
ORciscociscoworks_common_servicesMatch3.0.4
ORciscociscoworks_common_servicesMatch3.0.5
ORciscociscoworks_common_servicesMatch3.0.6
ORciscociscoworks_common_servicesMatch3.1
ORciscociscoworks_common_servicesMatch3.1.1
ORciscociscoworks_common_servicesMatch3.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | ciscoworks_common_services | * | cpe:2.3:a:cisco:ciscoworks_common_services:*:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 1.0 | cpe:2.3:a:cisco:ciscoworks_common_services:1.0:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 2.2 | cpe:2.3:a:cisco:ciscoworks_common_services:2.2:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 3.0 | cpe:2.3:a:cisco:ciscoworks_common_services:3.0:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 3.0.3 | cpe:2.3:a:cisco:ciscoworks_common_services:3.0.3:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 3.0.4 | cpe:2.3:a:cisco:ciscoworks_common_services:3.0.4:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 3.0.5 | cpe:2.3:a:cisco:ciscoworks_common_services:3.0.5:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 3.0.6 | cpe:2.3:a:cisco:ciscoworks_common_services:3.0.6:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 3.1 | cpe:2.3:a:cisco:ciscoworks_common_services:3.1:*:*:*:*:*:*:* |
| cisco | ciscoworks_common_services | 3.1.1 | cpe:2.3:a:cisco:ciscoworks_common_services:3.1.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2011-0966
2011-05-20 22:00:00
prion
prion
Directory traversal
2011-05-20 22:55:00
cve
cve
CVE-2011-0966
2011-05-20 22:55:03
exploitdb
exploitdb
CiscoWorks Common Services 3.1.1 - Auditing Directory Traversal
2011-05-18 00:00:00
Cisco Unified Operations Manager - Multiple Vulnerabilities
2011-05-18 00:00:00
seebug
seebug
Cisco Unified Operations Manager Multiple Vulnerabilities
2011-05-20 00:00:00
packetstorm
packetstorm
Cisco Unified Operations Manager XSS / SQL Injection / Directory Traversal
2011-05-18 00:00:00
securityvulns
securityvulns
Cisco Unified Operations Manager multiple security vulnerabilities
2011-05-21 00:00:00
Cisco Unified Operations Manager Multiple Vulnerabilities - SOS-11-006
2011-05-21 00:00:00
exploitpack
exploitpack
Cisco Unified Operations Manager - Multiple Vulnerabilities
2011-05-18 00:00:00
zdt
zdt
Cisco Unified Operations Manager Multiple Vulnerabilities - SOS-11-006
2011-05-18 00:00:00
nessus
nessus
Cisco Unified Operations Manager < 8.6 Multiple Vulnerabilities
2011-10-13 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:C/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.082
Percentile
94.4%
Related for NVD:CVE-2011-0966