This script is Copyright (C) 2017 Tenable Network Security, Inc.
A network management system running on the remote host is affected by
a remote code execution vulnerability.
The Cisco Prime Lan Management Solution (LMS) running on the remote
web server is affected by a remote code execution vulnerability due to
unsafe deserialize calls of unauthenticated Java objects to the Apache
Commons Collections (ACC) library. An unauthenticated, remote attacker
can exploit this, by sending a crafted RMI request, to execute
arbitrary code on the target host.
See also :
No release is planned by the vendor to fix this vulnerability.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.5
Public Exploit Available : false