2 matches found
CVE-2010-0138
CiscoWorks Internetwork Performance Monitor (IPM) for Windows, version 2.6 and earlier (bundled with CiscoWorks LMS), contains a buffer overflow in CORBA GIOP request handling (getProcessName). The flaw can be triggered remotely by a crafted GIOP request, enabling arbitrary code execution with SY...
CVE-2008-1157
CiscoWorks Internetwork Performance Monitor (IPM) 2.6 for Solaris and Windows contains a vulnerability where a process binds a command shell to a randomly chosen TCP port. Remote, unauthenticated users can connect to the open port and execute arbitrary commands (on Solaris as casuser, on Windows ...