CiscoWorks CMF could allow an attacker to execute commands
| cisco-cmf-command-execution (12907) |  High Risk |
Description:
CiscoWorks2000 Common Management Foundation (CMF) could allow a remote attacker to execute arbitrary commands on the CiscoWorks server, caused by improper filtering of user-supplied input. A remote authenticated attacker could send a specially-crafted URL, which would allow the attacker to execute commands on the server with privileges of the CiscoWorks application user and obtain sensitive information.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of CiscoWorks Common Services (2.2 or later), as listed in Cisco Security Advisory 2003 August 13 UTC 1500. See References.
References:
- Cisco Systems Inc. Security Advisory, 2003 August 13 UTC 1500: CiscoWorks Application Vulnerabilities.
- BID-8411: CiscoWorks Common Management User Field Privileged Information Disclosure Vulnerability
- CVE-2003-0731: CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the cmd parameter with a modifyUser value and a modified priviledges parameter.
Platforms Affected:
- Cisco CiscoWorks CD1 1st
- Cisco CiscoWorks CD1 2nd
- Cisco CiscoWorks CD1 3rd
- Cisco CiscoWorks CD1 4th
- Cisco CiscoWorks CD1 5th
- Cisco CiscoWorks Common Management Foundation 2.0
- Cisco CiscoWorks Common Management Foundation 2.1
- Cisco Resource Manager 1.0
- Cisco Resource Manager 1.1
- Cisco Resource Manager Essentials 2.0
- Cisco Resource Manager Essentials 2.1
- Cisco Resource Manager Essentials 2.2
Reported:
Aug 13, 2003
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net