#VU106 Arbitrary commands execution in Cisco Prime Infrastructure - CVE-2016-1442

Cybersecurity Help s.r.o.

Published: 2016-07-08 | Updated: 2020-07-12

Vulnerability identifier: #VU106

Vulnerability risk: Critical

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Red]

CVE-ID: CVE-2016-1442

CWE-ID: CWE-78

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Cisco Prime Infrastructure
Server applications / Remote management servers, RDP, SSH

Vendor: Cisco Systems, Inc

Description
The vulnerability allows a remote attacker to execute arbitrary commands on the target system.

The vulnerability exists due to improper user input validation. A remote unauthenticated attacker can cause arbitrary commands execution by inserting crafting input into the affected fields of the web interface.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation
Patch for this vulnerability is avaliable through the Cisco Bug Search Tool.

Cisco plans to release a software update in the third quarter of 2016. The expected fixed software version will be 3.1.1.

Vulnerable software versions

Cisco Prime Infrastructure: 3.1.0

External links
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-pi

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Arbitrary commands execution in Cisco Prime Infrastructure