Cisco » Ciscoworks Internetwork Performance Monitor : Security Vulnerabilities, CVEs,
Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote attackers to execute arbitrary code via a malformed getProcessName CORBA General Inter-ORB Protocol (GIOP) request, related to a "third-party component," aka Bug ID CSCsv62350.
Max CVSS
10.0
EPSS Score
39.29%
Published
2010-01-21
Updated
2017-08-17
Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitrary commands.
Max CVSS
10.0
EPSS Score
1.21%
Published
2008-03-14
Updated
2017-08-08
2 vulnerabilities found