Lucene search

CiscoCVE-2011-2042

HistoryOct 22, 2011 - 2:59 a.m.

CVE-2011-2042

2011-10-2202:59:19

CWE-200

cisco

web.nvd.nist.gov

cve-2011-2042

sybase sql anywhere

ciscoworks

common services

bug id cscsk35018

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

66.1%

JSON

The Sybase SQL Anywhere database component in Cisco CiscoWorks Common Services 3.x and 4.x before 4.1 allows remote attackers to obtain potentially sensitive information about the engine name and database port via an unspecified request to UDP port 2638, aka Bug ID CSCsk35018.

Affected configurations

Nvd

Node

ciscociscoworks_common_servicesMatch3.0

ciscociscoworks_common_servicesMatch3.0.3

ciscociscoworks_common_servicesMatch3.0.4

ciscociscoworks_common_servicesMatch3.0.5

ciscociscoworks_common_servicesMatch3.0.6

ciscociscoworks_common_servicesMatch3.1

ciscociscoworks_common_servicesMatch3.1.1

ciscociscoworks_common_servicesMatch3.2

ciscociscoworks_common_servicesMatch3.3

ciscociscoworks_common_servicesMatch4.0.1

VendorProductVersionCPE
ciscociscoworks_common_services3.0cpe:2.3:a:cisco:ciscoworks_common_services:3.0:*:*:*:*:*:*:*
ciscociscoworks_common_services3.0.3cpe:2.3:a:cisco:ciscoworks_common_services:3.0.3:*:*:*:*:*:*:*
ciscociscoworks_common_services3.0.4cpe:2.3:a:cisco:ciscoworks_common_services:3.0.4:*:*:*:*:*:*:*
ciscociscoworks_common_services3.0.5cpe:2.3:a:cisco:ciscoworks_common_services:3.0.5:*:*:*:*:*:*:*
ciscociscoworks_common_services3.0.6cpe:2.3:a:cisco:ciscoworks_common_services:3.0.6:*:*:*:*:*:*:*
ciscociscoworks_common_services3.1cpe:2.3:a:cisco:ciscoworks_common_services:3.1:*:*:*:*:*:*:*
ciscociscoworks_common_services3.1.1cpe:2.3:a:cisco:ciscoworks_common_services:3.1.1:*:*:*:*:*:*:*
ciscociscoworks_common_services3.2cpe:2.3:a:cisco:ciscoworks_common_services:3.2:*:*:*:*:*:*:*
ciscociscoworks_common_services3.3cpe:2.3:a:cisco:ciscoworks_common_services:3.3:*:*:*:*:*:*:*
ciscociscoworks_common_services4.0.1cpe:2.3:a:cisco:ciscoworks_common_services:4.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ciscoworks_common_services	3.0	cpe:2.3:a:cisco:ciscoworks_common_services:3.0:::::::*
cisco	ciscoworks_common_services	3.0.3	cpe:2.3:a:cisco:ciscoworks_common_services:3.0.3:::::::*
cisco	ciscoworks_common_services	3.0.4	cpe:2.3:a:cisco:ciscoworks_common_services:3.0.4:::::::*
cisco	ciscoworks_common_services	3.0.5	cpe:2.3:a:cisco:ciscoworks_common_services:3.0.5:::::::*
cisco	ciscoworks_common_services	3.0.6	cpe:2.3:a:cisco:ciscoworks_common_services:3.0.6:::::::*
cisco	ciscoworks_common_services	3.1	cpe:2.3:a:cisco:ciscoworks_common_services:3.1:::::::*
cisco	ciscoworks_common_services	3.1.1	cpe:2.3:a:cisco:ciscoworks_common_services:3.1.1:::::::*
cisco	ciscoworks_common_services	3.2	cpe:2.3:a:cisco:ciscoworks_common_services:3.2:::::::*
cisco	ciscoworks_common_services	3.3	cpe:2.3:a:cisco:ciscoworks_common_services:3.3:::::::*
cisco	ciscoworks_common_services	4.0.1	cpe:2.3:a:cisco:ciscoworks_common_services:4.0.1:::::::*

References

www.cisco.com/en/US/docs/net_mgmt/ciscoworks_common_services_software/3.3/release/notes/cs33rel.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

66.1%

JSON

Related for CVE-2011-2042