Cisco Prime Data Center Network Manager XML External Entity Injection Vulnerability

Cisco Prime Data Center Network Manager is prone to an XML External Entity injection vulnerability.

An attacker can exploit this issue to gain access to arbitrary text files on the underlying operating system with root privileges. Information obtained may aid in further attacks.

This issue is being tracked by Cisco Bug ID CSCud80148.


 

Privacy Statement
Copyright 2010, SecurityFocus