Vulnerability Name:

CVE-2009-1161 (CCN-50657)

Assigned:2009-05-20
Published:2009-05-20
Updated:2009-06-09
Summary:Directory traversal vulnerability in the TFTP service in Cisco CiscoWorks Common Services (CWCS) 3.0.x through 3.2.x on Windows, as used in Cisco Unified Service Monitor, Security Manager, TelePresence Readiness Assessment Manager, Unified Operations Manager, Unified Provisioning Manager, and other products, allows remote attackers to access arbitrary files via unspecified vectors.
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
8.7 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
8.7 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-22
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2009-1161

Source: JVN
Type: UNKNOWN
JVN#62527913

Source: JVNDB
Type: UNKNOWN
JVNDB-2009-000032

Source: OSVDB
Type: UNKNOWN
54616

Source: CCN
Type: SA35179
CiscoWorks TFTP Directory Traversal Vulnerability

Source: SECUNIA
Type: UNKNOWN
35179

Source: CCN
Type: SECTRACK ID: 1022263
CiscoWorks Bug in TFTP Service Lets Remote Users Traverse the Directory

Source: SECTRACK
Type: UNKNOWN
1022263

Source: CISCO
Type: Patch, Vendor Advisory
20090520 CiscoWorks TFTP Directory Traversal Vulnerability

Source: CCN
Type: Cisco Applied Mitigation Bulletin: Document ID: 110288
Identifying and Mitigating Exploitation of the CiscoWorks TFTP Directory Traversal Vulnerability

Source: CCN
Type: cisco-sa-20090520-cw
CiscoWorks TFTP Directory Traversal Vulnerability

Source: CCN
Type: OSVDB ID: 54616
CiscoWorks Common Services TFTP Traversal Arbitrary File Access

Source: BID
Type: UNKNOWN
35040

Source: CCN
Type: BID-35040
CiscoWorks Common Services TFTP Server Directory Traversal Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2009-1390

Source: XF
Type: UNKNOWN
ciscoworks-tftp-directory-traversal(50657)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:cisco:ciscoworks_common_services:3.0.3:*:windows:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.0.4:*:windows:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.0.5:*:windows:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.0.6:*:windows:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.1:*:windows:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.1.1:*:windows:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.2:*:windows:*:*:*:*:*
  • AND
  • cpe:/a:cisco:ciscoworks_health_and_utilization_monitor:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_health_and_utilization_monitor:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:2.5:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:2.6:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_qos_policy_manager:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_qos_policy_manager:4.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_voice_manager:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_voice_manager:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:security_manager:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:security_manager:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:security_manager:3.2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:telepresence_readiness_assessment_manager:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.3:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:2.1:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:cisco:ciscoworks_common_services:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:security_manager:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:security_manager:3.2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:security_manager:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_common_services:3.2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_service_monitor:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_qos_policy_manager:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_qos_policy_manager:4.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:2.5:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:2.6:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_lan_management_solution:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:telepresence_readiness_assessment_manager:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_voice_manager:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_voice_manager:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_health_and_utilization_monitor:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:ciscoworks_health_and_utilization_monitor:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_operations_manager:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:unified_provisioning_manager:1.3:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    cisco ciscoworks common services 3.0.3
    cisco ciscoworks common services 3.0.4
    cisco ciscoworks common services 3.0.5
    cisco ciscoworks common services 3.0.6
    cisco ciscoworks common services 3.1
    cisco ciscoworks common services 3.1.1
    cisco ciscoworks common services 3.2
    cisco ciscoworks health and utilization monitor 1.0
    cisco ciscoworks health and utilization monitor 1.1
    cisco ciscoworks lan management solution 2.5
    cisco ciscoworks lan management solution 2.6
    cisco ciscoworks lan management solution 3.0
    cisco ciscoworks lan management solution 3.1
    cisco ciscoworks qos policy manager 4.0
    cisco ciscoworks qos policy manager 4.1
    cisco ciscoworks voice manager 3.0
    cisco ciscoworks voice manager 3.1
    cisco security manager 3.0
    cisco security manager 3.1
    cisco security manager 3.2
    cisco telepresence readiness assessment manager 1.0
    cisco unified operations manager 1.0
    cisco unified operations manager 1.1
    cisco unified operations manager 2.0
    cisco unified operations manager 2.1
    cisco unified provisioning manager 1.0
    cisco unified provisioning manager 1.1
    cisco unified provisioning manager 1.2
    cisco unified provisioning manager 1.3
    cisco unified service monitor 1.0
    cisco unified service monitor 1.1
    cisco unified service monitor 2.0
    cisco unified service monitor 2.1
    cisco ciscoworks common services 3.0
    cisco ciscoworks common services 3.1
    cisco ciscoworks common services 3.0.3
    cisco ciscoworks common services 3.0.4
    cisco ciscoworks common services 3.0.5
    cisco ciscoworks common services 3.0.6
    cisco unified operations manager 2.0
    cisco unified service monitor 2.0
    cisco security manager 3.0
    cisco security manager 3.2
    cisco security manager 3.1
    cisco ciscoworks common services 3.2
    cisco unified service monitor 1.0
    cisco unified service monitor 1.1
    cisco unified service monitor 2.1
    cisco ciscoworks qos policy manager 4.0
    cisco ciscoworks qos policy manager 4.1
    cisco ciscoworks lan management solution 2.5
    cisco ciscoworks lan management solution 2.6
    cisco ciscoworks lan management solution 3.0
    cisco ciscoworks lan management solution 3.1
    cisco telepresence readiness assessment manager 1.0
    cisco ciscoworks voice manager 3.0
    cisco ciscoworks voice manager 3.1
    cisco ciscoworks health and utilization monitor 1.0
    cisco ciscoworks health and utilization monitor 1.1
    cisco unified operations manager 1.0
    cisco unified operations manager 1.1
    cisco unified operations manager 2.1
    cisco unified provisioning manager 1.0
    cisco unified provisioning manager 1.1
    cisco unified provisioning manager 1.2
    cisco unified provisioning manager 1.3