Lucene search
RootSSV:20963HistorySep 29, 2011 - 12:00 a.m.
Cisco IOS Smart Install远程代码执行漏洞
2011-09-2900:00:00
Root
www.seebug.org
41
EPSS
0.007
Percentile
80.2%
BUGTRAQ ID: 49828
CVE ID: CVE-2011-3271
Cisco的网际操作系统(IOS)是一个网际互连优化的复杂操作系统。
Cisco IOS的Smart Install功能在实现上存在漏洞,远程非法攻击者可利用此漏洞在受影响设备上执行任意代码。
此漏洞源于运行Cisco IOS Software的Cisco Catalyst Switches中的Smart Install功能,Smart Install使用TCP端口4786进行通信,要触发此漏洞需要完整的TCP三方握手的连接。
Cisco IOS 15.x
Cisco IOS 12.x
厂商补丁:
Cisco
Cisco已经为此发布了一个安全公告(cisco-sa-20110928-nat)以及相应补丁:
cisco-sa-20110928-nat:Cisco IOS Software Network Address Translation Vulnerabilities
链接:http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d4d.shtml
Related
cve
cve
CVE-2011-3271
2022-10-03 16:15:05
nessus
nessus
openvas
openvas
Cisco IOS Software Smart Install Remote Code Execution Vulnerability
2016-05-03 00:00:00
prion
prion
Code injection
2011-10-03 23:55:00
cisco
cisco
Cisco IOS Software Smart Install Remote Code Execution Vulnerability
2011-09-28 16:00:00
cvelist
cvelist
CVE-2011-3271
2022-10-03 16:15:05
securityvulns
securityvulns
Cisco Security Advisory: Cisco IOS Software Smart Install Remote Code Execution Vulnerability
2011-10-02 00:00:00
Cisco IOS multiple security vulnerabilities
2011-10-02 00:00:00
nvd
nvd
CVE-2011-3271
2011-10-03 23:55:03