Remote Command Execution Vulnerability in Cisco ACE Application Control Engine
CVE-2009-0622

Currently unrated

Key Information:

Vendor
Cisco
Status
Application Control Engine Module
Vendor
CVE Published:
26 February 2009

Summary

A vulnerability exists in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers, as well as the Cisco ACE 4710 Application Control Engine Appliance, enabling remote authenticated users to execute arbitrary operating-system commands via the command line interface (CLI). This could potentially allow attackers to gain unauthorized access or control over affected systems.

References

http://www.cisco.com/en/US/products/products_security_adv...
vendor-advisoryx_refsource_CISCO
http://www.securityfocus.com/bid/33900
vdb-entryx_refsource_BID

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.