Cisco Products Command Injection and Code Execution Vulnerabilities
Last Update Date:
2 Aug 2013 18:39
Release Date:
2 Aug 2013
4030
Views
RISK: Medium Risk
TYPE: Servers - Network Management
Multiple vulnerabilities have been identified in various Cisco products, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
Impact
- Remote Code Execution
System / Technologies affected
- Cisco WAAS (Wide Area Application Services) 4.x
- Cisco WAAS (Wide Area Application Services) 5.x
- Cisco ACNS (Application and Content Networking System) 4.x
- Cisco Content Delivery System (CDS-IS) 3.x
- Cisco Enterprise Content Delivery System (ECDS) 2.x
- Cisco VideoScape Delivery System for Internet Streamer (VDS-IS) 3.x
- Cisco VideoScape Delivery System Origin Server (VDS-OS) 1.x
- Cisco Videoscape Distribution Suite Optimization Engine (VDS-OE) 1.x
- Cisco Videoscape Distribution Suite Service Broker (VDS-SB) 1.x
- Cisco ACNS (Application and Content Networking System) 5.x
- Cisco Content Delivery System 2.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Apply patches:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-cm
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-waascm
Vulnerability Identifier
Source
Related Link
- http://secunia.com/advisories/54372/
- http://secunia.com/advisories/54370/
- http://secunia.com/advisories/54369/
- http://secunia.com/advisories/54367/
- http://securitytracker.com/id/1028853
- http://securitytracker.com/id/1028852
- http://securitytracker.com/id/1028851
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-cm
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-waascm
Share with