Cisco MARS < 4.2.1 remote compromise

Cisco MARS Monitoring, Analysis and Response System, sometimes referred to as CS-MARS prior to version 4.2.1 ships with an unprotected JBoss installation which ultimately leads to a complete compromise of the device. The caveat here is that, despite much work on Cisco's part, they were not able t...

CiscoProtego CS-MARS 4.2.1 - JBoss Remote Code Execution

CiscoProtego CS-MARS 4.2.1 - JBoss Remote Code Execution !/usr/bin/perl Cisco/Protego CS-MARS Addressed in CSCse47646 CS-MARS is an event correlation product orginally written by Protego, which is now owned by Cisco. It is built on top of JBoss. Unfortunately, little or no effort was put in to...