Signature Detail
Short Name |
APP:CISCO:CISCO-EPNM-DESERIAL |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Cisco Prime Infrastructure and EPNM Deserialization Code Execution |
Release Date |
2016/07/25 |
Update Number |
2762 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+ |
APP: Cisco Prime Infrastructure and EPNM Deserialization Code Execution
This signature detects attempts to exploit a known vulnerability against Cisco Prime Infrastructure and Evolved programmable Network Manager (EPNM). A successful attack can lead to arbitrary code execution.
Extended Description
Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allow remote attackers to execute arbitrary code via crafted deserialized data in an HTTP POST request, aka Bug ID CSCuw03192.
Affected Products
- Cisco evolved_programmable_network_manager 1.2.0
- Cisco prime_infrastructure 1.2.0
- Cisco prime_infrastructure 1.2.0.103
- Cisco prime_infrastructure 1.2.1
- Cisco prime_infrastructure 1.3.0
- Cisco prime_infrastructure 1.3.0.20
- Cisco prime_infrastructure 1.4.0
- Cisco prime_infrastructure 1.4.0.45
- Cisco prime_infrastructure 1.4.1
- Cisco prime_infrastructure 1.4.2
- Cisco prime_infrastructure 2.0.0
- Cisco prime_infrastructure 2.1.0
- Cisco prime_infrastructure 2.2.0
- Cisco prime_infrastructure 2.2%5c%282%5c%29
References
- CVE: CVE-2016-1291