Unrated severityNVD Advisory· Published Oct 29, 2010· Updated Apr 29, 2026

CVE-2010-3036

Description

Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services before 4.0 allow remote attackers to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.

Affected products

Cisco Systems, Inc./Ciscoworks Common Services6 versions
cpe:2.3:a:cisco:ciscoworks_common_services:3.0.5:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:cisco:ciscoworks_common_services:3.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_common_services:3.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_common_services:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_common_services:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_common_services:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_common_services:3.3:*:*:*:*:*:*:*
Cisco Systems, Inc./Ciscoworks Lan Management Solution5 versions
cpe:2.3:a:cisco:ciscoworks_lan_management_solution:2.6:update:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:cisco:ciscoworks_lan_management_solution:2.6:update:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_lan_management_solution:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_lan_management_solution:3.0:december_2007:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_lan_management_solution:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ciscoworks_lan_management_solution:3.2:*:*:*:*:*:*:*
Cisco Systems, Inc./Qos Policy Manager3 versions
cpe:2.3:a:cisco:qos_policy_manager:4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:cisco:qos_policy_manager:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:qos_policy_manager:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:qos_policy_manager:4.0.2:*:*:*:*:*:*:*
Cisco Systems, Inc./Security Manager2 versions
cpe:2.3:a:cisco:security_manager:3.0.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:cisco:security_manager:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.2:*:*:*:*:*:*:*
Cisco Systems, Inc./Telepresence Readiness Assessment Manager
cpe:2.3:a:cisco:telepresence_readiness_assessment_manager:1.0:*:*:*:*:*:*:*
Cisco Systems, Inc./Unified Operations Manager3 versions
cpe:2.3:a:cisco:unified_operations_manager:2.0.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:cisco:unified_operations_manager:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unified_operations_manager:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unified_operations_manager:2.0.3:*:*:*:*:*:*:*
Cisco Systems, Inc./Unified Service Monitor
cpe:2.3:a:cisco:unified_service_monitor:2.0.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/en/US/products/products_security_advisory09186a0080b51501.shtmlnvdPatchVendor Advisory
www.securityfocus.com/bid/44468nvdPatch
secunia.com/advisories/42011nvdVendor Advisory
www.vupen.com/english/advisories/2010/2793nvdVendor Advisory
osvdb.org/68927nvd
securitytracker.com/idnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.015
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000