ID
VAR-201401-0362
CVE
CVE-2014-0656
TITLE
Cisco Context Directory Agent Vulnerabilities triggered by missing user interface data
Trust: 0.8
DESCRIPTION
Cisco Context Directory Agent (CDA) allows remote authenticated users to trigger the omission of certain user-interface data via crafted field values, aka Bug ID CSCuj45353. An attacker can exploit this issue to hide values from displaying in the CDA user interface. This may also aid in launching further attacks. Cisco Context Directory Agent (CDA) is a set of Cisco (Cisco) company running on Cisco Linux machines for real-time monitoring Active Directory Domain Controller (DC) authentication and other related events. A security vulnerability exists in Cisco CDA
Trust: 1.98
AFFECTED PRODUCTS
| vendor: | cisco | model: | context directory agent | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | cisco | model: | context directory agent | scope: | eq | version: | 1.0 | Trust: 0.8 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
input validation
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | Cisco Context Directory Agent Hidden Input Vulnerability | url: | http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0656 | Trust: 0.8 |
| title: | 32367 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=32367 | Trust: 0.8 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2014-0656 | Trust: 2.8 |
| db: | BID | id: | 64701 | Trust: 1.4 |
| db: | SECTRACK | id: | 1029569 | Trust: 1.1 |
| db: | OSVDB | id: | 101801 | Trust: 1.1 |
| db: | JVNDB | id: | JVNDB-2014-001014 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201401-109 | Trust: 0.7 |
| db: | CISCO | id: | 20140107 CISCO CONTEXT DIRECTORY AGENT HIDDEN INPUT VULNERABILITY | Trust: 0.6 |
| db: | VULHUB | id: | VHN-68149 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2014-0656 | Trust: 1.7 |
| url: | http://www.securityfocus.com/bid/64701 | Trust: 1.1 |
| url: | http://osvdb.org/101801 | Trust: 1.1 |
| url: | http://www.securitytracker.com/id/1029569 | Trust: 1.1 |
| url: | https://exchange.xforce.ibmcloud.com/vulnerabilities/90169 | Trust: 1.1 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0656 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-0656 | Trust: 0.8 |
CREDITS
Cisco
Trust: 0.3
SOURCES
| db: | VULHUB | id: | VHN-68149 |
| db: | BID | id: | 64701 |
| db: | JVNDB | id: | JVNDB-2014-001014 |
| db: | CNNVD | id: | CNNVD-201401-109 |
| db: | NVD | id: | CVE-2014-0656 |
LAST UPDATE DATE
2025-04-11T23:07:14.351000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-68149 | date: | 2017-08-29T00:00:00 |
| db: | BID | id: | 64701 | date: | 2014-01-07T00:00:00 |
| db: | JVNDB | id: | JVNDB-2014-001014 | date: | 2014-01-10T00:00:00 |
| db: | CNNVD | id: | CNNVD-201401-109 | date: | 2014-01-09T00:00:00 |
| db: | NVD | id: | CVE-2014-0656 | date: | 2025-04-11T00:51:21.963 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-68149 | date: | 2014-01-08T00:00:00 |
| db: | BID | id: | 64701 | date: | 2014-01-07T00:00:00 |
| db: | JVNDB | id: | JVNDB-2014-001014 | date: | 2014-01-10T00:00:00 |
| db: | CNNVD | id: | CNNVD-201401-109 | date: | 2014-01-09T00:00:00 |
| db: | NVD | id: | CVE-2014-0656 | date: | 2014-01-08T21:55:06.380 |