Title: Multiple Linux-Based Cisco Products Local Privilege Escalation Vulnerability
Severity: HIGH
Description:
Multiple Linux-based Cisco products are prone to a local privilege-escalation vulnerability. The applications fail to properly sanitize user-supplied input.
This vulnerability presents itself when a user is logged into affected devices via telnet or SSH. The 'show' application improperly sanitizes user-supplied input before including it while executing commands. Attackers that include shell-metacharacters may inject arbitrary commands that will be executed with superuser privileges.
This issue allows attackers with telnet or SSH access to affected devices to execute arbitrary shell commands with superuser privileges, facilitating the complete compromise of affected devices.
Affected Products:
- Cisco CiscoWorks 1105 Hosting Solution Engine
- Cisco Ethernet Subscriber Solution Engine
- Cisco Hosting Solution Engine 1.0.0
- Cisco Hosting Solution Engine 1.3.0
- Cisco Hosting Solution Engine 1105 1.7.0
- Cisco Hosting Solution Engine 1105 1.7.1
- Cisco Hosting Solution Engine 1105 1.7.2
- Cisco Hosting Solution Engine 1105 1.7.3
- Cisco Service Management 0.0.0
- Cisco User Registration Tool 0.0.0
- Cisco Wireless Lan Solution Engine 0.0.0
- Cisco Wireless Lan Solution Engine 1105 2.0.0
- Cisco Wireless Lan Solution Engine 1105 2.0.2
- Cisco Wireless Lan Solution Engine 1105 2.5.0
- Cisco Wireless Lan Solution Engine 1130 2.0.0
- Cisco Wireless Lan Solution Engine 1130 2.0.0 .2
- Cisco Wireless Lan Solution Engine 1130 2.0.5
- Cisco Wireless Lan Solution Engine Express
References:
- Cisco: Cisco Security Advisory: Multiple Vulnerabilities in the WLSE Appliance
- Cisco: Cisco Security Response: Response to Privilege Escalation on Multiple Cisco Prod
- Cisco Systems: Cisco Call Manager Express
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
