CVE-2008-3820

Cisco Security Manager 3.1 and 3.2 before 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote attackers to obtain "root access" to IEV via unspecified use of TCP sessions to these ports.

Link	Resource
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a6192a.shtml	Patch Vendor Advisory
http://www.securityfocus.com/bid/33381
http://secunia.com/advisories/33633	Vendor Advisory
http://www.securitytracker.com/id?1021619
http://www.vupen.com/english/advisories/2009/0214
https://exchange.xforce.ibmcloud.com/vulnerabilities/48134

Configuration 1

cpe:2.3:a:cisco:security_manager:3.1.1:sp3:*:*:*:*:*:* cpe:2.3:a:cisco:security_manager:3.2:*:*:*:*:*:*:* cpe:2.3:a:cisco:security_manager:3.2.1:sp1:*:*:*:*:*:* cpe:2.3:a:cisco:security_manager:3.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:security_manager:3.2.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:security_manager:3.1.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:security_manager:3.2:sp2:*:*:*:*:*:* cpe:2.3:a:cisco:security_manager:*:*:*:*:*:*:*:*

---

Published : 2009-01-22 06:30

Updated : 2017-08-08 01:32

---

NVD link : CVE-2008-3820

Mitre link : CVE-2008-3820

No products.

NVD-CWE-Other