CVE-2013-3429

Public PoC / Exploit (1)

Exploit-DBCisco Video Surveillance Operations Manager 6.3.2 - Multiple Vulnerabilities

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple directory traversal vulnerabilities in Cisco Video Surveillance Manager (VSM) before 7.0.0 allow remote attackers to read system files via a crafted URL, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv37163.

Weaknesses (CWE)

CWE-22

Affected Products (21)

cisco · video_surveillance_managervulnerable

References (8)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130724-vsm

Vendor Advisory

http://www.securityfocus.com/bid/61430

http://www.securitytracker.com/id/1028827

https://exchange.xforce.ibmcloud.com/vulnerabilities/85947

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130724-vsm

Vendor Advisory

http://www.securityfocus.com/bid/61430

http://www.securitytracker.com/id/1028827

https://exchange.xforce.ibmcloud.com/vulnerabilities/85947