CVE-2011-3310 Information

Description

The Home Page component in Cisco CiscoWorks Common Services before 4.1 on Windows as used in CiscoWorks LAN Management Solution Cisco Security Manager Cisco Unified Service Monitor Cisco Unified Operations Manager CiscoWorks QoS Policy Manager and CiscoWorks Voice Manager allows remote authenticated users to execute arbitrary commands via a crafted URL aka Bug IDs CSCtq48990 CSCtq63992 CSCtq64011 CSCtq64019 CSCtr23090 and CSCtt25535.

Reference

http://secunia.com/advisories/46533 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-cs http://www.securityfocus.com/bid/50284 https://exchange.xforce.ibmcloud.com/vulnerabilities/70759