First published: Thu Apr 25 2013(Updated: )
The JAR files on Cisco Device Manager for Cisco MDS 9000 devices before 5.2.8, and Cisco Device Manager for Cisco Nexus 5000 devices, allow remote attackers to execute arbitrary commands on Windows client machines via a crafted element-manager.jnlp file, aka Bug IDs CSCty17417 and CSCty10802.
Credit: ykramarz@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco Adaptive Security Appliance Device Manager | <=5.2.5 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.1 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.2 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.4 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.5 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.6 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.7 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.8 | |
Cisco Adaptive Security Appliance Device Manager | =5.0.9 | |
Cisco Adaptive Security Appliance Device Manager | =5.1.1 | |
Cisco Adaptive Security Appliance Device Manager | =5.1.2 | |
Cisco Adaptive Security Appliance Device Manager | =5.2.1 | |
Cisco Adaptive Security Appliance Device Manager | =5.2.2 | |
Cisco Adaptive Security Appliance Device Manager | =5.2.3 | |
Cisco Adaptive Security Appliance Device Manager | =5.2.4 | |
Cisco Nexus 5000 | ||
Cisco Nexus 5010 | ||
Cisco Nexus 5010p Switch | ||
Cisco Nexus 5020 | ||
Cisco Nexus 5020p Switch | ||
Cisco Nexus 5548p | ||
Cisco Nexus 5548up | ||
Cisco Nexus 5596up | ||
Cisco MDS 9000 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.