Details of VAR-201604-0050

ID

VAR-201604-0050

CVE

CVE-2016-1340

TITLE

Cisco Unified Computing System Platform Emulator Heap-based buffer overflow vulnerability

Trust: 1.4

sources: JVNDB: JVNDB-2016-002104 // CNNVD: CNNVD-201604-327

DESCRIPTION

Heap-based buffer overflow in Cisco Unified Computing System (UCS) Platform Emulator 2.5(2)TS4, 3.0(2c)A, and 3.0(2c)TS9 allows local users to gain privileges via crafted libclimeta.so filename arguments, aka Bug ID CSCux68837. Vendors have confirmed this vulnerability Bug ID CSCux68837 It is released as.Crafted by local users libclimeta.so It may be possible to get permission through the filename argument. Successful exploits may allow local attackers to execute arbitrary code in context of the application. Failed exploits may result in denial-of-service conditions. This issue being tracked by Cisco Bug ID CSCux68837. Cisco UCS Platform Emulator (UCSPE) is one of the UCS emulators. The following releases are affected: Cisco UCSPE Release 2.5(2)TS4, Release 3.0(2c)A, Release 3.0(2c)TS9

Trust: 1.98

sources: NVD: CVE-2016-1340 // JVNDB: JVNDB-2016-002104 // BID: 86071 // VULHUB: VHN-90159

AFFECTED PRODUCTS

vendor:	cisco	model:	unified computing system platform emulator	scope:	eq	version:	2.5\(2\)ts4	Trust: 1.6
vendor:	cisco	model:	unified computing system platform emulator	scope:	eq	version:	3.0\(2c\)a	Trust: 1.6
vendor:	cisco	model:	unified computing system platform emulator	scope:	eq	version:	3.0\(2c\)ts9	Trust: 1.6
vendor:	cisco	model:	unified computing system platform emulator	scope:	eq	version:	2.5(2)ts4	Trust: 0.8
vendor:	cisco	model:	unified computing system platform emulator	scope:	eq	version:	3.0(2c)a	Trust: 0.8
vendor:	cisco	model:	unified computing system platform emulator	scope:	eq	version:	3.0(2c)ts9	Trust: 0.8

sources: JVNDB: JVNDB-2016-002104 // CNNVD: CNNVD-201604-327 // NVD: CVE-2016-1340

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2016-1340
value:	HIGH
Trust: 1.0
NVD:	CVE-2016-1340
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201604-327
value:	HIGH
Trust: 0.6
VULHUB:	VHN-90159
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2016-1340
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-90159
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2016-1340
baseSeverity:	HIGH
baseScore:	8.4
vectorString:	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.5
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-90159 // JVNDB: JVNDB-2016-002104 // CNNVD: CNNVD-201604-327 // NVD: CVE-2016-1340

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-90159 // JVNDB: JVNDB-2016-002104 // NVD: CVE-2016-1340

THREAT TYPE

local

Trust: 0.9

sources: BID: 86071 // CNNVD: CNNVD-201604-327

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201604-327

CONFIGURATIONS

sources: JVNDB: JVNDB-2016-002104

PATCH

title:	cisco-sa-20160414-ucspe2	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160414-ucspe2	Trust: 0.8
title:	Cisco Unified Computing System Platform Emulator Fixes for heap-based buffer overflow vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=60971	Trust: 0.6

sources: JVNDB: JVNDB-2016-002104 // CNNVD: CNNVD-201604-327

EXTERNAL IDS

db:	NVD	id:	CVE-2016-1340	Trust: 2.8
db:	SECTRACK	id:	1035582	Trust: 1.1
db:	JVNDB	id:	JVNDB-2016-002104	Trust: 0.8
db:	CNNVD	id:	CNNVD-201604-327	Trust: 0.6
db:	BID	id:	86071	Trust: 0.3
db:	VULHUB	id:	VHN-90159	Trust: 0.1

sources: VULHUB: VHN-90159 // BID: 86071 // JVNDB: JVNDB-2016-002104 // CNNVD: CNNVD-201604-327 // NVD: CVE-2016-1340

REFERENCES

url:	http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160414-ucspe2	Trust: 2.0
url:	http://www.securitytracker.com/id/1035582	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-1340	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-1340	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: VULHUB: VHN-90159 // BID: 86071 // JVNDB: JVNDB-2016-002104 // CNNVD: CNNVD-201604-327 // NVD: CVE-2016-1340

CREDITS

Jacob Baines of Tenable Network Security

Trust: 0.6

sources: CNNVD: CNNVD-201604-327

SOURCES

db:	VULHUB	id:	VHN-90159
db:	BID	id:	86071
db:	JVNDB	id:	JVNDB-2016-002104
db:	CNNVD	id:	CNNVD-201604-327
db:	NVD	id:	CVE-2016-1340

LAST UPDATE DATE

2025-04-13T23:42:01.910000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-90159	date:	2016-07-29T00:00:00
db:	BID	id:	86071	date:	2016-07-06T14:27:00
db:	JVNDB	id:	JVNDB-2016-002104	date:	2016-04-19T00:00:00
db:	CNNVD	id:	CNNVD-201604-327	date:	2016-04-18T00:00:00
db:	NVD	id:	CVE-2016-1340	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-90159	date:	2016-04-16T00:00:00
db:	BID	id:	86071	date:	2016-04-14T00:00:00
db:	JVNDB	id:	JVNDB-2016-002104	date:	2016-04-19T00:00:00
db:	CNNVD	id:	CNNVD-201604-327	date:	2016-04-15T00:00:00
db:	NVD	id:	CVE-2016-1340	date:	2016-04-16T01:59:05.560