====================================================================


                             CERT-Renater

                 Note d'Information No. 2018/VULN310
_____________________________________________________________________

DATE                : 03/10/2018

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco Prime Infrastructure versions
                                   3.2 up to 3.4.

=====================================================================
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-pi-tftp
_____________________________________________________________________

Cisco Security Advisory: Cisco Prime Infrastructure Arbitrary File
Upload and Command Execution Vulnerability

Advisory ID: cisco-sa-20181003-pi-tftp

Revision: 1.0

For Public Release: 2018 October 3 16:00 GMT

Last Updated: 2018 October 3 16:00 GMT

CVE ID(s): CVE-2018-15379

CVSS Score v(3): 7.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

+---------------------------------------------------------------------

Summary

=======

A vulnerability in which the HTTP web server for Cisco Prime
Infrastructure (PI) has unrestricted directory permissions could allow
an unauthenticated, remote attacker to upload an arbitrary file. This
file could allow the attacker to execute commands at the privilege level
of the user prime. This user does not have administrative or root
privileges.

The vulnerability is due to an incorrect permission setting for
important system directories. An attacker could exploit this
vulnerability by uploading a malicious file by using TFTP, which can be
accessed via the web-interface GUI. A successful exploit could allow the
attacker to run commands on the targeted application without
authentication.

Cisco has released software updates that address this vulnerability.
There are workarounds that address this vulnerability.

This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-pi-tftp
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-pi-tftp"]

=========================================================
+ CERT-RENATER        | tel : 01-53-94-20-44            +
+ 23/25 Rue Daviel    | fax : 01-53-94-20-41            +
+ 75013 Paris         | email:cert@support.renater.fr   +
=========================================================