Buffer Overflow Vulnerability in Cisco Unified Service Monitor and EMC Ionix Products
CVE-2011-2738

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Service Monitor; Ciscoworks Lan Management Solution; Unified Operations Manager
Vendor: CVE Published:; 19 September 2011

What is CVE-2011-2738?

Multiple vulnerabilities within Cisco Unified Service Monitor and various EMC Ionix products can be exploited by remote attackers through specially crafted TCP packets sent to port 9002. These vulnerabilities are associated with potential buffer overflow issues, allowing attackers to execute arbitrary code, thereby compromising the integrity of the affected systems and potentially exposing sensitive information. Organizations using these products should assess their environments for these vulnerabilities and apply necessary updates and patches to mitigate risks.

References

http://secunia.com/advisories/46052

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id?1026048

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/46053

third-party-advisoryx_refsource_SECUNIA

EPSS Score

11% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 19, 2011
Vulnerability Reserved
Jul 13, 2011