CVE-2011-0364

Description

The Management Console (webagent.exe) in Cisco Security Agent 5.1, 5.2, and 6.0 before 6.0.2.145 allows remote attackers to create arbitrary files and execute arbitrary code via unspecified parameters in a crafted st_upload request.

References

Link	Tags
http://securityreason.com/securityalert/8197	third party advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6cee6.shtml	vendor advisory
http://www.securitytracker.com/id?1025088	vdb entry
http://www.zerodayinitiative.com/advisories/ZDI-11-088
http://www.securityfocus.com/archive/1/516505/100/0/threaded	mailing list
http://securityreason.com/securityalert/8205	third party advisory
http://secunia.com/advisories/43383	third party advisory vendor advisory
http://securityreason.com/securityalert/8095	third party advisory
http://www.securityfocus.com/bid/46420	vdb entry
http://www.vupen.com/english/advisories/2011/0424	vdb entry vendor advisory
http://secunia.com/advisories/43393	third party advisory vendor advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/65436	vdb entry

Frequently Asked Questions

What is the severity of CVE-2011-0364?: CVE-2011-0364 has been scored as a critical severity vulnerability.
How to fix CVE-2011-0364?: To fix CVE-2011-0364, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2011-0364 being actively exploited in the wild?: It is possible that CVE-2011-0364 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~21% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-94 – Improper Control of Generation of Code ('Code Injection')

References

Frequently Asked Questions