cisco-sa-20101027-cs

CiscoWorks Common Services Arbitrary Code Execution Vulnerability

cisco-sa-20101027-cs · Critical · Published 15 years ago · Updated 15 years ago

CiscoWorks Common Services for both Oracle Solaris and Microsoft Windows contains a vulnerability that could allow a remote unauthenticated attacker to execute arbitrary code on a host device with privileges of a system administrator. Cisco has released software updates that address this vulnerability. There are no workarounds that mitigate this vulnerability. Mitigations that limit the attack surface of this vulnerability are available. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20101027-cs.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEs	CVE-2010-3036
Cisco Bug IDs	NA
CVSS Score	Base 10.0 Base 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Product Names From Source	CiscoWorks Common Services (CS)

Related Products

Product	CVE	Evidence
CiscoWorks Common Services (CS)	CVE-2010-3036	Cisco OpenVuln

Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CiscoWorks Common Services Arbitrary Code Execution Vulnerability

Workarounds

Related Products