CiscoWorks Internetwork Performance Monitor CORBA GIOP Overflow
Critical Nessus Plugin ID 69447
SynopsisThe remote host has an application installed that is affected by a buffer overflow vulnerability.
DescriptionThe version of CiscoWorks Internetwork Performance Monitor installed on the remote Windows host is less than or equal to 2.6. Such versions are potentially affected by a buffer overflow vulnerability when processing Common Object Request Broker Architecture GIOP requests. By exploiting this flaw, a remote, unauthenticated attacker could execute arbitrary code subject to the privileges of the user running the affected application.
SolutionContact the vendor for instructions on migrating to non-vulnerable software.