Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The installation of Cisco Transport Controller (CTC) for Cisco Optical Networking System (ONS) 15000 series nodes adds a Java policy file entry with a wildcard that grants the java.security.AllPermission permission to any http URL containing "fs/LAUNCHER.jar", which allows remote attackers to execute arbitrary code on a CTC workstation, aka bug ID CSCea25049.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco光纤网络系统 传输控制器中多个漏洞
Vulnerability Description
Cisco光纤网络系统(ONS)15000系列节点的Cisco传输控制器(CTC)的安装,会加入一个带通配符的Java策略文件,这个java文件对于任意包含"fs/LAUNCHER.jar"的Http URL拥有java.secrity.AllPermission的权限,那将允许远程攻击者在CTC工作站执行任意代码,这又称bug ID CSCea25049.
CVSS Information
N/A
Vulnerability Type
N/A