漏洞类别:CGI
漏洞等级: 
漏洞信息
A vulnerability in the Cisco Unified Computing System (UCS) Platform Emulator could allow an authenticated, local attacker to perform a command injection attack.
The vulnerability occurs because the affected system improperly handles ucspe-copy command-line arguments.
漏洞危害
An attacker could exploit this vulnerability by using crafted command arguments on the system. An exploit could allow the attacker to perform a command injection attack, which could allow the attacker to execute arbitrary commands on the system.
解决方案
Refer to Cisco Advisory cisco-sa-20160414-ucspe1 for more information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论