Vulnerability Details CVE-2011-2738
Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used in Unified Operations Manager before 8.6 and CiscoWorks LAN Management Solution 3.x and 4.x before 4.1; and multiple EMC Ionix products including Application Connectivity Monitor (Ionix ACM) 2.3 and earlier, Adapter for Alcatel-Lucent 5620 SAM EMS (Ionix ASAM) 3.2.0.2 and earlier, IP Management Suite (Ionix IP) 8.1.1.1 and earlier, and other Ionix products; allow remote attackers to execute arbitrary code via crafted packets to TCP port 9002, aka Bug IDs CSCtn42961 and CSCtn64922, related to a buffer overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.113
EPSS Ranking 93.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/45979
- http://secunia.com/advisories/46016
- http://secunia.com/advisories/46052
- http://secunia.com/advisories/46053
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351e.shtml
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351f.shtml
- http://www.osvdb.org/75442
- http://www.securityfocus.com/archive/1/519646/100/0/threaded
- http://www.securityfocus.com/bid/49627
- http://www.securityfocus.com/bid/49644
- http://www.securitytracker.com/id?1026046
- http://www.securitytracker.com/id?1026047
- http://www.securitytracker.com/id?1026048
- http://www.securitytracker.com/id?1026059
- https://exchange.xforce.ibmcloud.com/vulnerabilities/69828
- http://secunia.com/advisories/45979
- http://secunia.com/advisories/46016
- http://secunia.com/advisories/46052
- http://secunia.com/advisories/46053
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351e.shtml
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351f.shtml
- http://www.osvdb.org/75442
- http://www.securityfocus.com/archive/1/519646/100/0/threaded
- http://www.securityfocus.com/bid/49627
- http://www.securityfocus.com/bid/49644
- http://www.securitytracker.com/id?1026046
- http://www.securitytracker.com/id?1026047
- http://www.securitytracker.com/id?1026048
- http://www.securitytracker.com/id?1026059
- https://exchange.xforce.ibmcloud.com/vulnerabilities/69828
Products affected by CVE-2011-2738
-
cpe:2.3:a:cisco:ciscoworks_lan_management_solution:3.0
-
cpe:2.3:a:cisco:ciscoworks_lan_management_solution:3.1
-
cpe:2.3:a:cisco:ciscoworks_lan_management_solution:3.2
-
cpe:2.3:a:cisco:ciscoworks_lan_management_solution:4.0
-
cpe:2.3:a:cisco:ciscoworks_lan_management_solution:4.0.1
-
cpe:2.3:a:cisco:unified_operations_manager:-
-
cpe:2.3:a:cisco:unified_operations_manager:1.0
-
cpe:2.3:a:cisco:unified_operations_manager:1.1
-
cpe:2.3:a:cisco:unified_operations_manager:2.0
-
cpe:2.3:a:cisco:unified_operations_manager:2.0.1
-
cpe:2.3:a:cisco:unified_operations_manager:2.0.2
-
cpe:2.3:a:cisco:unified_operations_manager:2.0.3
-
cpe:2.3:a:cisco:unified_operations_manager:2.1
-
cpe:2.3:a:cisco:unified_operations_manager:2.2
-
cpe:2.3:a:cisco:unified_operations_manager:2.3
-
cpe:2.3:a:cisco:unified_operations_manager:8.0
-
cpe:2.3:a:cisco:unified_service_monitor:-
-
cpe:2.3:a:cisco:unified_service_monitor:1.1
-
cpe:2.3:a:cisco:unified_service_monitor:2.0
-
cpe:2.3:a:cisco:unified_service_monitor:2.0.1
-
cpe:2.3:a:cisco:unified_service_monitor:2.1
-
cpe:2.3:a:cisco:unified_service_monitor:2.2
-
cpe:2.3:a:cisco:unified_service_monitor:2.3
-
cpe:2.3:a:cisco:unified_service_monitor:8.0
-
cpe:2.3:a:emc:ionix_acm:*
-
cpe:2.3:a:emc:ionix_asam:*
-
cpe:2.3:a:emc:ionix_ip:*