SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Router/Bridge/Hub)  >   Cisco uBR Universal Broadband Routers Vendors:   Cisco
Cisco uBR10000 Series Universal Broadband Routers Discloses Potentially Sensitive Information to Remote Users
SecurityTracker Alert ID:  1032678
SecurityTracker URL:  http://securitytracker.com/id/1032678
CVE Reference:   CVE-2015-4202   (Links to External Site)
Date:  Jun 20 2015
Impact:   Disclosure of system information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): uBR10000 Series; IOS 12.2SCH, 12.2(33)SCH
Description:   A vulnerability was reported in Cisco uBR10000 Series Universal Broadband Routers. A remote user can obtain potentially sensitive information on the target system.

A remote user can send specially crafted IP Detail Record (IPDR) packets to TCP port 4737 on the target Cisco Cable Modem Termination Systems (CMTS) device to obtain potentially sensitive information from the device, including MAC addresses and byte counts.

The vendor has assigned bug ID CSCua39203 to this vulnerability.

Impact:   A remote user can obtain potentially sensitive information on the target system.
Solution:   The vendor has issued a fix.

The vendor's advisory is available at:

http://tools.cisco.com/security/center/viewAlert.x?alertId=39432

Vendor URL:  tools.cisco.com/security/center/viewAlert.x?alertId=39432 (Links to External Site)
Cause:   Access control error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC