CVE-2011-2042

The Sybase SQL Anywhere database component in Cisco CiscoWorks Common Services 3.x and 4.x before 4.1 allows remote attackers to obtain potentially sensitive information about the engine name and database port via an unspecified request to UDP port 2638, aka Bug ID CSCsk35018.

Published: Oct 22, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-2042
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
cisco / ciscoworks_common_services	3.0.6	3.0.6.x
cisco / ciscoworks_common_services	3.0.4	3.0.4.x
cisco / ciscoworks_common_services	3.2	3.2.x
cisco / ciscoworks_common_services	4.0.1	4.0.1.x
cisco / ciscoworks_common_services	3.1.1	3.1.1.x
cisco / ciscoworks_common_services	3.3	3.3.x
cisco / ciscoworks_common_services	3.0	3.0.x
cisco / ciscoworks_common_services	3.1	3.1.x
cisco / ciscoworks_common_services	3.0.3	3.0.3.x
cisco / ciscoworks_common_services	3.0.5	3.0.5.x

http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_common_services_software/3.3/release/notes/cs33rel.html

Vulnerability Database

289,697

CVE-2011-2042