Vulnerability CVE-2006-1961
Published: 2006-04-21   Modified: 2012-02-12

Description:
Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13, Hosting Solution Engine (HSE) and User Registration Tool (URT) before 20060419, and all versions of Ethernet Subscriber Solution Engine (ESSE) and CiscoWorks2000 Service Management Solution (SMS) allow local users to gain Linux shell access via shell metacharacters in arguments to the "show" command in the application's command line interface (CLI), aka bug ID CSCsd21502 (WLSE), CSCsd22861 (URT), and CSCsd22859 (HSE). NOTE: other issues might be addressed by the Cisco advisory.

Type:

CWE-Other

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Cisco -> Ciscoworks 2000 service management solution 
Cisco -> User registration tool 
Cisco -> Wireless lan solution engine 
Cisco -> Hosting solution engine 
Cisco -> Ethernet subscriber solution engine 

 References:
http://securitytracker.com/id?1015965
http://www.assurance.com.au/advisories/200604-cisco.txt
http://www.cisco.com/warp/public/707/cisco-sa-20060419-wlse.shtml
http://www.cisco.com/warp/public/707/cisco-sr-20060419-priv.shtml
http://www.securityfocus.com/archive/1/431367/30/5490/threaded
http://www.securityfocus.com/archive/1/431371/30/5490/threaded
http://www.securityfocus.com/bid/17609
http://www.vupen.com/english/advisories/2006/1434
http://www.vupen.com/english/advisories/2006/1435
https://exchange.xforce.ibmcloud.com/vulnerabilities/25884
Copyright 2024, cxsecurity.com

 

Back to Top