思科產品指令插入及程式碼執行漏洞

影響

• 遠端執行程式碼

受影響之系統或技術

• Cisco WAAS (Wide Area Application Services) 4.x
• Cisco WAAS (Wide Area Application Services) 5.x
• Cisco ACNS (Application and Content Networking System) 4.x
• Cisco Content Delivery System (CDS-IS) 3.x
• Cisco Enterprise Content Delivery System (ECDS) 2.x
• Cisco VideoScape Delivery System for Internet Streamer (VDS-IS) 3.x
• Cisco VideoScape Delivery System Origin Server (VDS-OS) 1.x
• Cisco Videoscape Distribution Suite Optimization Engine (VDS-OE) 1.x
• Cisco Videoscape Distribution Suite Service Broker (VDS-SB) 1.x
• Cisco ACNS (Application and Content Networking System) 5.x
• Cisco Content Delivery System 2.x

解決方案

在安裝軟體之前，請先瀏覽軟體供應商之網站，以獲得更多詳細資料。

• 安裝修補程式：
  http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-cm
  http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-waascm

漏洞識別碼

• CVE-2013-3443
• CVE-2013-3444

資料來源

• Secunia
• Security Tracker
• Cisco

相關連結

• http://secunia.com/advisories/54372/
• http://secunia.com/advisories/54370/
• http://secunia.com/advisories/54369/
• http://secunia.com/advisories/54367/
• http://securitytracker.com/id/1028853
• http://securitytracker.com/id/1028852
• http://securitytracker.com/id/1028851
• http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-cm
• http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-waascm