Unspecified vulnerability in Cisco Mediator Framework affecting Network Building Mediator and Richards-Zeta Mediator
CVE-2010-0597

Currently unrated

Key Information:

Vendor: Cisco
Status: Mediator Framework
Vendor: CVE Published:; 27 May 2010

Summary

An unspecified vulnerability exists in Cisco Mediator Framework versions prior to 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1. This issue allows remote authenticated users to exploit the system by sending specially crafted XML RPC or XML RPC over HTTPS requests, enabling them to read or modify device configurations. Additionally, this vulnerability can permit privilege escalation or lead to a denial of service through device reload, potentially impacting network performance and reliability.

References

http://securitytracker.com/id?1024027

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/40386

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
May 27, 2010
Vulnerability Reserved
Feb 10, 2010