|
297611
|
- |
|
cybozu
|
garoon
|
Session fixation vulnerability in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack web sessions via the session ID in the login page.
|
CWE-287
Improper Authentication
|
CVE-2008-6569
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297612
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in the RSS reader in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrary web script or HTML via a crafted RSS feed.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6570
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297613
|
- |
|
avaya
|
communication_manager
|
Multiple SQL injection vulnerabilities in Avaya SIP Enablement Services (SES) in Avaya Avaya Communication Manager 3.x, 4.0, and 5.0 (1) allow remote attackers to execute arbitrary SQL commands via u…
|
CWE-89
SQL Injection
|
CVE-2008-6573
|
2017-08-17 10:29 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297614
|
- |
|
avaya
|
communication_manager
|
Unspecified vulnerability in SIP Enablement Services (SES) in Avaya Communication Manager 3.1.x and 4.x allows remote attackers to gain privileges and cause a denial of service via unknown vectors re…
|
NVD-CWE-noinfo
|
CVE-2008-6574
|
2017-08-17 10:29 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297615
|
- |
|
avaya
|
communication_manager
|
Unspecified vulnerability in the SIP server in SIP Enablement Services (SES) in Avaya Communication Manager 3.1.x and 4.x allows remote authenticated users to cause a denial of service (resource cons…
|
NVD-CWE-noinfo
|
CVE-2008-6575
|
2017-08-17 10:29 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297616
|
- |
|
nortel
|
cs1000
|
Unspecified vulnerability in the "session limitation technique" in the FTP service on Nortel Communications Server 1000 (CS1K) 4.50.x, when running on VGMC or signaling nodes, allows remote attackers…
|
NVD-CWE-noinfo
|
CVE-2008-6576
|
2017-08-17 10:29 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297617
|
- |
|
nortel
|
cs1000
|
Nortel MG1000S, Signaling Server, and Call Server on the Communications Server 1000 (CS1K) 4.50.x contain multiple unspecified hard-coded accounts and passwords, which allows remote attackers to gain…
|
CWE-255
Credentials Management
|
CVE-2008-6577
|
2017-08-17 10:29 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297618
|
- |
|
nortel
|
cs1000
|
Multiple unspecified vulnerabilities in Nortel Communication Server 1000 4.50.x allow remote attackers to execute arbitrary commands to gain privileges, obtain sensitive information, or cause a denia…
|
NVD-CWE-noinfo
|
CVE-2008-6578
|
2017-08-17 10:29 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297619
|
- |
|
nortel
|
cs1000
|
Nortel Communication Server 1000 4.50.x allows remote attackers to obtain Web application structure via unknown vectors related to "web resources to phones and administrators."
|
NVD-CWE-noinfo
|
CVE-2008-6579
|
2017-08-17 10:29 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297620
|
- |
|
aztech
|
adsl2\/2\+4-port_router
|
Aztech ADSL2/2+ 4-port router has a default "isp" account with a default "isp" password, which allows remote attackers to obtain access if this default is not changed.
|
CWE-255
Credentials Management
|
CVE-2008-6588
|
2017-08-17 10:29 |
2009-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
