2 matches found
CVE-2014-0730
Cisco UCS Central Software (UCS-Central) 1.1 and earlier is affected by a local-privesc flaw in the local-mgmt context. The issue stems from improper input validation in the copy command, allowing an authenticated local attacker to craft commands and gain shell-level access. Exploitation requires...
Cisco Unified Computing System 'copy'命令本地特权提升漏洞
Bugtraq ID:65638 CVE ID:CVE-2014-0730 Cisco Unified Computing System通过将统一计算、网络、存储访问和虚拟化整合到一个系统中,简化IT管理并提高灵活性。 Cisco Unified Computing System local-mgmt上下文存在安全漏洞,允许本地通过验证的攻击者提升权限。漏洞是由于不正确校验copy命令的输入,允许攻击者提交特殊命令来获得对shell的访问。 0 Cisco Unified Computing System Central Software 厂商补丁: Cisco -----...