Home Unlabelled Cisco IOx Application-Hosting Framework Directory Traversal Vulnerability

Cisco IOx Application-Hosting Framework Directory Traversal Vulnerability

By
Wednesday, December 07, 2016
Read
Add Comment
A vulnerability in the Cisco application-hosting framework (CAF) of Cisco IOx could allow an authenticated, remote attacker to read arbitrary files on a targeted system.

The vulnerability is due to insufficient input validation by the affected framework. An attacker could exploit this vulnerability by submitting specific, crafted input to the affected framework on a targeted system. A successful exploit could allow the attacker to read arbitrary files on the targeted system.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
http://ift.tt/2gCsgG9 A vulnerability in the Cisco application-hosting framework (CAF) of Cisco IOx could allow an authenticated, remote attacker to read arbitrary files on a targeted system.

The vulnerability is due to insufficient input validation by the affected framework. An attacker could exploit this vulnerability by submitting specific, crafted input to the affected framework on a targeted system. A successful exploit could allow the attacker to read arbitrary files on the targeted system.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
http://ift.tt/2gCsgG9
Security Impact Rating: Medium
CVE: CVE-2016-9199

from Cisco Security Advisory http://ift.tt/2gCsgG9
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us