CVE-2009-0615

Directory traversal vulnerability in Cisco Application Networking Manager (ANM) before 2.0 and Application Control Engine (ACE) Device Manager before A3(2.1) allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to "invalid directory permissions."
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:application_control_engine_device_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_control_engine_device_manager:1.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_networking_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_networking_manager:1.1:*:*:*:*:*:*:*

History

21 Nov 2024, 01:00

Type Values Removed Values Added
References () http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc84.shtml - Vendor Advisory () http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc84.shtml - Vendor Advisory
References () http://www.securityfocus.com/bid/33903 - () http://www.securityfocus.com/bid/33903 -
References () http://www.securitytracker.com/id?1021770 - () http://www.securitytracker.com/id?1021770 -

Information

Published : 2009-02-26 16:17

Updated : 2024-11-21 01:00


NVD link : CVE-2009-0615

Mitre link : CVE-2009-0615

CVE.ORG link : CVE-2009-0615


JSON object : View

Products Affected

cisco

  • application_networking_manager
  • application_control_engine_device_manager
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')