Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Heap Overflow in Solaris cachefs Daemon

cisco-sa-20020724-solaris-cachefs · NA · Published · Updated

This advisory describes a vulnerability that affects Cisco products and applications that are installed on the Solaris operating system, and is based on the vulnerability of an common service within the Solaris operating system, not due to a defect of the Cisco product or application. A vulnerability in the "cachefs" program was discovered that enables an attacker to execute arbitrary code under Solaris OS. This vulnerability was publicly announced in the CERT Advisory CA-2002-11. All Cisco products and applications that are installed on Solaris OS are considered vulnerable to the underlying operating system vulnerability, unless the workaround was applied. This vulnerability is described in details in Sun(sm) Alert Notification at http://sunsolve.sun.com/search/document.do?assetkey=1-26-44309-1 . No other Cisco product is vulnerable. Sun is working on a patch. Until the patch is released all affected customers are advised to apply the workaround described in the workaround section. This advisory is available at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020724-solaris-cachefs.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2002-0033, CVE-2002-0084, CVE-2002-0085, CVE-2003-1063
Cisco Bug IDsNA
CVSS ScoreBase NA
Product Names From Source
NA, Cisco BAMS - Billing and Management Server, Cisco Cable Manager, Cisco Cisco Media Gateway Controller (MGC) Node Manager, Cisco DSL Manager, Cisco Element Management Framework (Cisco EMF), Cisco Element Manager Software, Cisco IP Manager, Cisco Manager, Cisco Media Gateway Manager (MGM), Cisco PGW 2200 Softswitch, Cisco SC 2200 Signaling Controller, Cisco Secure Access Control Server (ACS) for UNIX, Cisco Universal Gateway Manager, Cisco Virtual Switch Controller VSC3000, Cisco Voice Services Provisioning Tool (VSPT)

Related Products

Product CVE Evidence
Cisco Voice Services Provisioning Tool (VSPT) CVE-2003-1063 Cisco OpenVuln
Cisco Voice Services Provisioning Tool (VSPT) CVE-2002-0085 Cisco OpenVuln
Cisco Voice Services Provisioning Tool (VSPT) CVE-2002-0084 Cisco OpenVuln
Cisco Voice Services Provisioning Tool (VSPT) CVE-2002-0033 Cisco OpenVuln
Cisco Virtual Switch Controller VSC3000 CVE-2003-1063 Cisco OpenVuln
Cisco Virtual Switch Controller VSC3000 CVE-2002-0085 Cisco OpenVuln
Cisco Virtual Switch Controller VSC3000 CVE-2002-0084 Cisco OpenVuln
Cisco Virtual Switch Controller VSC3000 CVE-2002-0033 Cisco OpenVuln
Cisco Universal Gateway Manager CVE-2003-1063 Cisco OpenVuln
Cisco Universal Gateway Manager CVE-2002-0085 Cisco OpenVuln
Cisco Universal Gateway Manager CVE-2002-0084 Cisco OpenVuln
Cisco Universal Gateway Manager CVE-2002-0033 Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for UNIX CVE-2003-1063 Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for UNIX CVE-2002-0085 Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for UNIX CVE-2002-0084 Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for UNIX CVE-2002-0033 Cisco OpenVuln
Cisco SC 2200 Signaling Controller CVE-2003-1063 Cisco OpenVuln
Cisco SC 2200 Signaling Controller CVE-2002-0085 Cisco OpenVuln
Cisco SC 2200 Signaling Controller CVE-2002-0084 Cisco OpenVuln
Cisco SC 2200 Signaling Controller CVE-2002-0033 Cisco OpenVuln
Cisco PGW 2200 Softswitch CVE-2003-1063 Cisco OpenVuln
Cisco PGW 2200 Softswitch CVE-2002-0085 Cisco OpenVuln
Cisco PGW 2200 Softswitch CVE-2002-0084 Cisco OpenVuln
Cisco PGW 2200 Softswitch CVE-2002-0033 Cisco OpenVuln
Cisco Media Gateway Manager (MGM) CVE-2003-1063 Cisco OpenVuln
Cisco Media Gateway Manager (MGM) CVE-2002-0085 Cisco OpenVuln
Cisco Media Gateway Manager (MGM) CVE-2002-0084 Cisco OpenVuln
Cisco Media Gateway Manager (MGM) CVE-2002-0033 Cisco OpenVuln
Cisco Manager CVE-2003-1063 Cisco OpenVuln
Cisco Manager CVE-2002-0085 Cisco OpenVuln
Cisco Manager CVE-2002-0084 Cisco OpenVuln
Cisco Manager CVE-2002-0033 Cisco OpenVuln
Cisco IP Manager CVE-2003-1063 Cisco OpenVuln
Cisco IP Manager CVE-2002-0085 Cisco OpenVuln
Cisco IP Manager CVE-2002-0084 Cisco OpenVuln
Cisco IP Manager CVE-2002-0033 Cisco OpenVuln
Cisco Element Manager Software CVE-2003-1063 Cisco OpenVuln
Cisco Element Manager Software CVE-2002-0085 Cisco OpenVuln
Cisco Element Manager Software CVE-2002-0084 Cisco OpenVuln
Cisco Element Manager Software CVE-2002-0033 Cisco OpenVuln
Cisco Element Management Framework (Cisco EMF) CVE-2003-1063 Cisco OpenVuln
Cisco Element Management Framework (Cisco EMF) CVE-2002-0085 Cisco OpenVuln
Cisco Element Management Framework (Cisco EMF) CVE-2002-0084 Cisco OpenVuln
Cisco Element Management Framework (Cisco EMF) CVE-2002-0033 Cisco OpenVuln
Cisco DSL Manager CVE-2003-1063 Cisco OpenVuln
Cisco DSL Manager CVE-2002-0085 Cisco OpenVuln
Cisco DSL Manager CVE-2002-0084 Cisco OpenVuln
Cisco DSL Manager CVE-2002-0033 Cisco OpenVuln
Cisco Cisco Media Gateway Controller (MGC) Node Manager CVE-2003-1063 Cisco OpenVuln
Cisco Cisco Media Gateway Controller (MGC) Node Manager CVE-2002-0085 Cisco OpenVuln
Cisco Cisco Media Gateway Controller (MGC) Node Manager CVE-2002-0084 Cisco OpenVuln
Cisco Cisco Media Gateway Controller (MGC) Node Manager CVE-2002-0033 Cisco OpenVuln
Cisco Cable Manager CVE-2003-1063 Cisco OpenVuln
Cisco Cable Manager CVE-2002-0085 Cisco OpenVuln
Cisco Cable Manager CVE-2002-0084 Cisco OpenVuln
Cisco Cable Manager CVE-2002-0033 Cisco OpenVuln
Cisco BAMS - Billing and Management Server CVE-2003-1063 Cisco OpenVuln
Cisco BAMS - Billing and Management Server CVE-2002-0085 Cisco OpenVuln
Cisco BAMS - Billing and Management Server CVE-2002-0084 Cisco OpenVuln
Cisco BAMS - Billing and Management Server CVE-2002-0033 Cisco OpenVuln