VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 21, 2006· Updated Apr 16, 2026

CVE-2006-1961

CVE-2006-1961

Description

Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13, Hosting Solution Engine (HSE) and User Registration Tool (URT) before 20060419, and all versions of Ethernet Subscriber Solution Engine (ESSE) and CiscoWorks2000 Service Management Solution (SMS) allow local users to gain Linux shell access via shell metacharacters in arguments to the "show" command in the application's command line interface (CLI), aka bug ID CSCsd21502 (WLSE), CSCsd22861 (URT), and CSCsd22859 (HSE). NOTE: other issues might be addressed by the Cisco advisory.

Affected products

36
  • Cisco Systems, Inc./Ciscoworks 2000 Service Management Solution
    cpe:2.3:a:cisco:ciscoworks_2000_service_management_solution:*:*:*:*:*:*:*:*
  • Cisco Systems, Inc./User Registration Tool
    cpe:2.3:a:cisco:user_registration_tool:*:*:*:*:*:*:*:*
  • Cisco Systems, Inc./Wireless Lan Solution Engine28 versions
    cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:*:*:*:*:*:*+ 27 more
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.10:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.10:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.11:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.11:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.12:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.12:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.13:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.13:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.5:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.6:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.7:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.8:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.8:*:express:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.9:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:wireless_lan_solution_engine:2.9:*:express:*:*:*:*:*
  • Cisco Systems, Inc./Hosting Solution Engine5 versions
    cpe:2.3:h:cisco:hosting_solution_engine:1.7:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:h:cisco:hosting_solution_engine:1.7:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:hosting_solution_engine:1.7.0:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:hosting_solution_engine:1.7.1:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:hosting_solution_engine:1.7.2:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:hosting_solution_engine:1.7.3:*:*:*:*:*:*:*
  • Cisco Systems, Inc./Ethernet Subscriber Solution Engine
    cpe:2.3:o:cisco:ethernet_subscriber_solution_engine:*:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

14

News mentions

0

No linked articles in our index yet.