Published: 21/01/2010 Updated: 17/08/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and previous versions on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote malicious users to execute arbitrary code via a malformed getProcessName CORBA General Inter-ORB Protocol (GIOP) request, related to a "third-party component," aka Bug ID CSCsv62350.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ciscoworks_internetwork_performance_monitor 2.5
cisco ciscoworks_internetwork_performance_monitor 2.4
cisco ciscoworks_internetwork_performance_monitor

CiscoWorks Internetwork Performance Monitor (IPM) versions 26 and earlier for Microsoft Windows operating systems contain a buffer overflow vulnerability that could allow a remote unauthenticated attacker to execute arbitrary code There are no workarounds for this vulnerability This advisory is posted at toolsciscocom/securit ...

CWE-119 http://securitytracker.com/id?1023484 http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1351d.shtml http://www.vupen.com/english/advisories/2010/0184 http://secunia.com/advisories/38230 http://www.securityfocus.com/bid/37879 http://www.zerodayinitiative.com/advisories/ZDI-10-004/https://exchange.xforce.ibmcloud.com/vulnerabilities/55768 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20100120-ipm

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-0138

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect