Lucene search

PRIOn knowledge basePRION:CVE-2008-1157

HistoryMar 14, 2008 - 8:44 p.m.

Command injection

2008-03-1420:44:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

84.2%

JSON

Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitrary commands.

CPENameOperatorVersion
ciscoworks_internetwork_performance_monitoreq2.6

CPE	Name	Operator	Version
	ciscoworks_internetwork_performance_monitor	eq	2.6

References

secunia.com/advisories/29376

www.cisco.com/warp/public/707/cisco-sa-20080313-ipm.shtml

www.securityfocus.com/bid/28249

www.securitytracker.com/id?1019611

www.vupen.com/english/advisories/2008/0876/references

exchange.xforce.ibmcloud.com/vulnerabilities/41208

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

84.2%

JSON

Related for PRION:CVE-2008-1157