The JAR files on Cisco Device Manager for Cisco MDS 9000 devices before 5.2.8, and Cisco Device Manager for Cisco Nexus 5000 devices, allow remote attackers to execute arbitrary commands on Windows client machines via a crafted element-manager.jnlp file, aka Bug IDs CSCty17417 and CSCty10802.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-fmdm | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Information
Published : 2013-04-25 03:55
Updated : 2018-10-30 09:26
NVD link : CVE-2013-1192
Mitre link : CVE-2013-1192
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
cisco
- mds_9000
- nexus_5596up
- nexus_5000
- nexus_5020
- nexus_5020p_switch
- nexus_5548p
- nexus_5548up
- adaptive_security_appliance_device_manager
- nexus_5010p_switch
- nexus_5010