CyberSec.Space Logo
Back to CVE Browser

CVE-2010-3036

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0020%
EPSS Percentile23.33th
PublishedOct 29, 2010
Last ModifiedApr 29, 2026

Vulnerability Description

Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services before 4.0 allow remote attackers to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.

Affected Platforms (CPE)

πŸ“¦
Cisco

Ciscoworks Common Services

= 3.0.5
πŸ“¦
Cisco

Ciscoworks Common Services

= 3.0.6
πŸ“¦
Cisco

Ciscoworks Common Services

= 3.1
πŸ“¦
Cisco

Ciscoworks Common Services

= 3.1.1
πŸ“¦
Cisco

Ciscoworks Common Services

= 3.2
πŸ“¦
Cisco

Ciscoworks Common Services

= 3.3
πŸ“¦
Cisco

Ciscoworks Lan Management Solution

= 2.6
πŸ“¦
Cisco

Ciscoworks Lan Management Solution

= 3.0
πŸ“¦
Cisco

Ciscoworks Lan Management Solution

= 3.0
πŸ“¦
Cisco

Ciscoworks Lan Management Solution

= 3.1
πŸ“¦
Cisco

Ciscoworks Lan Management Solution

= 3.2
πŸ“¦
Cisco

Qos Policy Manager

= 4.0
πŸ“¦
Cisco

Qos Policy Manager

= 4.0.1
πŸ“¦
Cisco

Qos Policy Manager

= 4.0.2
πŸ“¦
Cisco

Security Manager

= 3.0.2
πŸ“¦
Cisco

Security Manager

= 3.2
πŸ“¦
Cisco

Telepresence Readiness Assessment Manager

= 1.0
πŸ“¦
Cisco

Unified Operations Manager

= 2.0.1
πŸ“¦
Cisco

Unified Operations Manager

= 2.0.2
πŸ“¦
Cisco

Unified Operations Manager

= 2.0.3
πŸ“¦
Cisco

Unified Service Monitor

= 2.0.1

References & Advisories

πŸ”— http://osvdb.org/68927
πŸ”— http://secunia.com/advisories/42011
πŸ”— http://securitytracker.com/id?1024646
πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a0080b51501.shtml
πŸ”— http://www.securityfocus.com/bid/44468
πŸ”— http://www.vupen.com/english/advisories/2010/2793
πŸ”— http://osvdb.org/68927
πŸ”— http://secunia.com/advisories/42011

Related Vulnerabilities

CVE-2009-116110.0

Directory traversal vulnerability in the TFTP service in Cisco CiscoWorks Common Services (CWCS) 3.0.x through 3.2.x on Windows, a...

CVE-2008-20549.3

Unspecified vulnerability in Cisco CiscoWorks Common Services 3.0.3 through 3.1.1 allows remote attackers to execute arbitrary cod...

CVE-2011-33109.0

The Home Page component in Cisco CiscoWorks Common Services before 4.1 on Windows, as used in CiscoWorks LAN Management Solution, ...

CVE-2011-09666.8

Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 a...