EUVD-2016-2438

Malware in sbrugna...

QEMU Security Vulnerabilities

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU has a security vulnerability that can be exploited by attackers to trigger a denial of service...

Cisco UCS Platform Emulator 3.1(2ePE1) - Remote Code Execution

Vulnerabilities Summary The following advisory describes two remote code execution vulnerabilities found in Cisco UCS Platform Emulator version 3.12ePE1. Cisco UCS Platform Emulator is the Cisco UCS Manager application bundled into a virtual machine VM. The VM includes software that emulates...

Cisco UCS Platform Emulator 3.1(2ePE1) - Remote Code Execution

Cisco UCS Platform Emulator 3.12ePE1 - Remote Code Execution Vulnerabilities Summary The following advisory describes two remote code execution vulnerabilities found in Cisco UCS Platform Emulator version 3.12ePE1. Cisco UCS Platform Emulator is the Cisco UCS Manager application bundled into a...

Cisco UCS Platform Emulator Detection (HTTP)

HTTP based detection of Cisco UCS Platform Emulator. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cisco:unifiedcomputingsystem...

CVE-2016-1340

Heap-based buffer overflow in Cisco Unified Computing System UCS Platform Emulator 2.52TS4, 3.02cA, and 3.02cTS9 allows local users to gain privileges via crafted libclimeta.so filename arguments, aka Bug ID CSCux68837...

CVE-2016-1339

Cisco Unified Computing System UCS Platform Emulator 2.52TS4, 3.02cA, and 3.02cTS9 allows local users to gain privileges via crafted arguments on a ucspe-copy command line, aka Bug ID CSCux68832...

CVE-2016-1339

Cisco Unified Computing System UCS Platform Emulator 2.52TS4, 3.02cA, and 3.02cTS9 allows local users to gain privileges via crafted arguments on a ucspe-copy command line, aka Bug ID CSCux68832...

CVE-2016-1340

Cisco UCS Platform Emulator (UCSPE) versions 2.5(2)TS4, 3.0(2c)A, and 3.0(2c)TS9 are affected by a heap-based buffer overflow when handling libclimeta.so filename arguments. Root cause: improper validation of the libclimeta.so filename, enabling local privilege escalation. Impact: local users can...

Cisco Unified Computing System Platform Emulator Command Injection Vulnerability

Cisco Unified Computing System UCS is a set of Cisco's data center architecture platform that includes server hardware, management software, and virtualization support.Cisco UCS Platform Emulator UCSPE is one of the UCS emulators. A command injection vulnerability exists in Cisco UCSPE that stems...

Cisco Unified Computing System Platform Emulator Filename Argument Handling Buffer Overflow Vulnerability

A vulnerability in Cisco Unified Computing System UCS Platform Emulator could allow an authenticated, local attacker to trigger a heap-based buffer overflow on a targeted system. The vulnerability occurs because the affected system improperly handles libclimeta.so filename arguments. An attacker...

Default Password (cliuser) for 'cliuser' Account

The account 'cliuser' on the remote host has the password 'cliuser'. An attacker may leverage this issue to gain administrative access to the affected system. Note that Cisco Unified Computing System Platform Emulator is known to use these credentials to provide administrative access to the CLI...