Cisco MARS (Monitoring, Analysis and Response System, sometimes referred
to as CS-MARS) prior to version 4.2.1 ships with an unprotected JBoss
installation which ultimately leads to a complete compromise of the
device.
The caveat here is that, despite much work on Cisco's part, they were
not able t...
to as CS-MARS) prior to version 4.2.1 ships with an unprotected JBoss
installation which ultimately leads to a complete compromise of the
device.
The caveat here is that, despite much work on Cisco's part, they were
not able t...
[ more ]