CVE-2011-0364: CVE-2011-0364

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-0364

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Management Console (webagent.exe) in Cisco Security Agent 5.1, 5.2, and 6.0 before 6.0.2.145 allows remote attackers to create arbitrary files and execute arbitrary code via unspecified parameters in a crafted st_upload request.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cisco Security Agent Management Center web界面任意文件创建漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cisco Security Agent（CSA）是美国思科是的一套用于为服务器和桌面计算系统提供安全防护的网络安全代理软件。 Cisco Security Agent 6.0版本中存在一个漏洞。恶意攻击者可以利用这些攻击漏洞系统。该漏洞是由于当处理某些POST参数时，在Management Center web(webagent.exe)界面中存在的一个输入验证错误导致的。攻击者可以借助特制"st_upload"请求，创建任意文件。成功利用后可以以SYSTEM权限执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2011-0364

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2011-0364

Please Login to view more intelligence information

http://www.zerodayinitiative.com/advisories/ZDI-11-088x_refsource_MISC
http://securityreason.com/securityalert/8205third-party-advisoryx_refsource_SREASON
http://securityreason.com/securityalert/8095third-party-advisoryx_refsource_SREASON
http://securityreason.com/securityalert/8197third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/43383third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/43393third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/46420vdb-entryx_refsource_BID
http://www.securitytracker.com/id?1025088vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2011/0424vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/65436vdb-entryx_refsource_XF
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6cee6.shtmlvendor-advisoryx_refsource_CISCO
http://www.securityfocus.com/archive/1/516505/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2011-0364

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2011-0364

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2011-0364

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2011-0364

III. Intelligence Information for CVE-2011-0364

IV. Related Vulnerabilities

V. Comments for CVE-2011-0364

Leave a comment