Cisco fixes security management flaws

By

Cisco has fixed multiple flaws in its security management solution that could allow attackers to compromise sensitive information or execute malicious code, the networking giant announced late Wednesday.

Two of the three vulnerabilities in Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to version 4.2.1 relate to third-party software used in conjunction with the appliance, according to an advisory.


CS-MARS uses an Oracle database to store confidential network event and configuration data. However, the database contains numerous default Oracle accounts, containing well-known passwords, which could be accessed to obtain sensitive information.

In addition, the JBoss web application server, which ships with CS-MARS, contains a bug that allows unauthenticated, remote attackers to heighten privileges and execute arbitrary shell commands.

A third vulnerability exists in the appliance's command line interface (CLI), used to perform administrative functions. The bug could allow administrators the ability to execute arbitrary shell commands with root privileges.

CS-MARS users are urged to install the latest software from the Cisco website, according to an advisory. There are no workarounds.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
ciscofixesflawsmanagementsecurity

Sponsored Whitepapers

State of the SOC: Building Resilience in a Shifting Threat Landscape
State of the SOC: Building Resilience in a Shifting Threat Landscape
Transform IT Service Delivery with Freshworks ITSM
Transform IT Service Delivery with Freshworks ITSM
Digital Transformation That Works in the Real World
Digital Transformation That Works in the Real World
Beyond the Breach: Logicalis Delivers Scalable, Business-Aligned MXDR Security
Beyond the Breach: Logicalis Delivers Scalable, Business-Aligned MXDR Security
Transforming IT for the Hybrid Era
Transforming IT for the Hybrid Era

Events

Most Read Articles

University of Western Australia resets all staff and student passwords

University of Western Australia resets all staff and student passwords
"Shade BIOS" stealth malware hides below operating system

"Shade BIOS" stealth malware hides below operating system
Confusion reigns as phishers abuse Exchange Online Direct Send

Confusion reigns as phishers abuse Exchange Online Direct Send
"ReVault" firmware flaws allow persistent access in Dell laptops

"ReVault" firmware flaws allow persistent access in Dell laptops
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?