CVE-2010-0138

critical Cisco
CVSS v3 Base Score
10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS Score
10.9%
Exploitation probability in 30 days
Top 7% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: January 21, 2010 (5956 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote attackers to execute arbitrary code via a malformed getProcessName CORBA General Inter-ORB Protocol (GIOP) request, related to a "third-party component," aka Bug ID CSCsv62350.

CWE

CWE-119

Affected Products

cisco ciscoworks internetwork performance monitor

References

🔗 secunia.com 🔗 securitytracker.com 🔗 www.cisco.com 🔗 www.securityfocus.com 🔗 www.vupen.com