CVE-2011-2738

Description

Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used in Unified Operations Manager before 8.6 and CiscoWorks LAN Management Solution 3.x and 4.x before 4.1; and multiple EMC Ionix products including Application Connectivity Monitor (Ionix ACM) 2.3 and earlier, Adapter for Alcatel-Lucent 5620 SAM EMS (Ionix ASAM) 3.2.0.2 and earlier, IP Management Suite (Ionix IP) 8.1.1.1 and earlier, and other Ionix products; allow remote attackers to execute arbitrary code via crafted packets to TCP port 9002, aka Bug IDs CSCtn42961 and CSCtn64922, related to a buffer overflow.

Affected products

• Cisco / ciscoworks_lan_management_solution3.2 – 3.2
• Cisco / ciscoworks_lan_management_solution4.0 – 4.0
• Cisco / ciscoworks_lan_management_solution4.0.1 – 4.0.1
• Cisco / ciscoworks_lan_management_solution3.0 – 3.0
• Cisco / ciscoworks_lan_management_solution3.0 – 3.0
• Cisco / ciscoworks_lan_management_solution3.1 – 3.1
• Cisco / unified_operations_manager2.3 – 2.3
• Cisco / unified_operations_manager8.0 – 8.0
• Cisco / unified_operations_manager8.5
• Cisco / unified_operations_manager1.0 – 1.0
• Cisco / unified_operations_manager2.0 – 2.0
• Cisco / unified_operations_manager1.1 – 1.1
• Cisco / unified_operations_manager2.0.1 – 2.0.1
• Cisco / unified_operations_manager2.0.2 – 2.0.2
• Cisco / unified_operations_manager2.0.3 – 2.0.3
• Cisco / unified_operations_manager2.1 – 2.1
• Cisco / unified_operations_manager2.2 – 2.2
• Cisco / unified_service_monitor8.5
• Cisco / unified_service_monitor1.1 – 1.1
• Cisco / unified_service_monitor2.0 – 2.0
• Cisco / unified_service_monitor2.0.1 – 2.0.1
• Cisco / unified_service_monitor2.1 – 2.1
• Cisco / unified_service_monitor2.2 – 2.2
• Cisco / unified_service_monitor2.3 – 2.3
• Cisco / unified_service_monitor8.0 – 8.0
• EMC / ionix_acm2.3
• EMC / ionix_asam3.2.0.2
• EMC / ionix_ip8.1.1.1

References

• VENDOR_ADVISORYhttp://secunia.com/advisories/46052
• MISChttp://www.securitytracker.com/id?1026048
• VENDOR_ADVISORYhttp://secunia.com/advisories/46053
• VENDOR_ADVISORYhttp://secunia.com/advisories/45979
• VENDOR_ADVISORYhttp://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351f.shtml
• MISChttp://www.osvdb.org/75442
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/69828
• VENDOR_ADVISORYhttp://secunia.com/advisories/46016
• MISChttp://www.securityfocus.com/bid/49627
• MISChttp://www.securityfocus.com/bid/49644
• VENDOR_ADVISORYhttp://www.cisco.com/en/US/products/products_security_advisory09186a0080b9351e.shtml
• MISChttp://www.securitytracker.com/id?1026059
• MISChttp://www.securitytracker.com/id?1026047
• MISChttp://www.securitytracker.com/id?1026046
• MISChttp://www.securityfocus.com/archive/1/519646/100/0/threaded