Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:DIR:CISCO-PRIME-DATA-ID |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Cisco Prime Data Center Network Manager Information Disclosure |
Release Date |
2016/02/11 |
Update Number |
2644 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Cisco Prime Data Center Network Manager Information Disclosure
This signature detects attempts to exploit a known flaw against Cisco Prime Data Center Network Manager. A successful attack can result in Information Disclosure.
Extended Description
Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) before 7.1(1) allows remote attackers to read arbitrary files via a crafted pathname, aka Bug ID CSCus00241.
Affected Products
- Cisco prime_data_center_network_manager 6.3(1)
- Cisco prime_data_center_network_manager 6.3(2)
- Cisco prime_data_center_network_manager 7.0(1)
- Cisco prime_data_center_network_manager 7.0(2)
References
- CVE: CVE-2015-0666