Skip to main content

Cisco Prime Data Center Network Manager JBoss RMI Services Vulnerability

Last Update Date: 1 Nov 2012 11:37 Release Date: 1 Nov 2012 5549 Views

RISK: Medium Risk

TYPE: Servers - Network Management

TYPE: Network Management

A vulnerability has been identified in Cisco Prime Data Center Network Manager, which can be exploited by remote user to execute arbitrary commands on the target system.

 

A remote user can send specially crafted data to JBoss Application Server Remote Method Invocation (RMI) services to execute arbitrary code on the target system. The code will run with System or root privileges.


Impact

  • Remote Code Execution

System / Technologies affected

  • Cisco Prime Data Center Network Manager prior to 6.1(1)

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version (6.1(1)).

Vulnerability Identifier


Source


Related Link