CVE-2011-0364

Currently unrated

Key Information:

Vendor: Cisco
Status: Security Agent
Vendor: CVE Published:; 19 February 2011

Summary

The Management Console (webagent.exe) in Cisco Security Agent 5.1, 5.2, and 6.0 before 6.0.2.145 allows remote attackers to create arbitrary files and execute arbitrary code via unspecified parameters in a crafted st_upload request.

References

http://securityreason.com/securityalert/8197

third-party-advisoryx_refsource_SREASON

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id?1025088

vdb-entryx_refsource_SECTRACK

EPSS Score

66% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 19, 2011
Vulnerability Reserved
Jan 7, 2011