Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CiscoWorks TFTP Directory Traversal Vulnerability

cisco-sa-20090520-cw · Critical · Published · Updated

CiscoWorks Common Services contains a vulnerability that could allow an unauthenticated remote attacker to access application and host operating system files. Cisco has released software updates that address this vulnerability. A workaround that mitigates this vulnerability is available. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090520-cw.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2009-1161
Cisco Bug IDsNA
CVSS ScoreBase 10.0
Base 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C/E:H/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Product Names From Source
CiscoWorks Common Services (CS), CiscoWorks LAN Management Solution (LMS), CiscoWorks QoS Policy Manager (QPM), Cisco Unified Operations Manager, Cisco Unified Service Monitor, Cisco Security Manager, Cisco TelePresence Readiness Assessment Manager, CiscoWorks Voice Manager, CiscoWorks Health and Utilization Monitor (HUM), Cisco Unified Provisioning Manager

Related Products

Product CVE Evidence
CiscoWorks Voice Manager CVE-2009-1161 Cisco OpenVuln
CiscoWorks QoS Policy Manager (QPM) CVE-2009-1161 Cisco OpenVuln
CiscoWorks LAN Management Solution (LMS) CVE-2009-1161 Cisco OpenVuln
CiscoWorks Health and Utilization Monitor (HUM) CVE-2009-1161 Cisco OpenVuln
CiscoWorks Common Services (CS) CVE-2009-1161 Cisco OpenVuln
Cisco Unified Service Monitor CVE-2009-1161 Cisco OpenVuln
Cisco Unified Provisioning Manager CVE-2009-1161 Cisco OpenVuln
Cisco Unified Operations Manager CVE-2009-1161 Cisco OpenVuln
Cisco TelePresence Readiness Assessment Manager CVE-2009-1161 Cisco OpenVuln
Cisco TelePresence CVE-2009-1161 Cisco OpenVuln
Cisco Security Manager CVE-2009-1161 Cisco OpenVuln