Cisco APIC < 1.3(2f) Binary File Installation Handling Local Privilege Escalation

According to its self-reported version number, the Cisco Application Policy Infrastructure Controller APIC software running on the remote host is prior to 1.32f. It is, therefore, affected by a local privilege escalation vulnerability due to insecure permissions set for binary files during the...

CVE-2016-1420

The installation component on Cisco Application Policy Infrastructure Controller APIC devices with software before 1.32f mishandles binary files, which allows local users to obtain root access via unspecified vectors, aka Bug ID CSCuz72347...

CVE-2016-1420

CVE-2016-1420 - Cisco APIC local privilege escalation : The vulnerability affects Cisco Application Policy Infrastructure Controller (APIC) devices running software before 1.3(2f). During installation, the installation component mishandles binary files due to insecure permissions, enabling a loca...