|
277741
|
- |
|
cisco
|
telepresence_system_software_ix
|
The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote aut…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0611
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277742
|
- |
|
cisco
|
ios
|
Race condition in the object-group ACL feature in Cisco IOS 15.5(2)T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper hand…
|
CWE-362
Race Condition
|
CVE-2015-0610
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277743
|
- |
|
cisco
|
ios
|
Race condition in the Measurement, Aggregation, and Correlation Engine (MACE) implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) vi…
|
CWE-362
Race Condition
|
CVE-2015-0608
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277744
|
- |
|
cisco
|
ios
|
The IOS Shell in Cisco IOS allows local users to cause a denial of service (device crash) via unspecified commands, aka Bug ID CSCur59696.
|
CWE-20
Improper Input Validation
|
CVE-2015-0606
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277745
|
- |
|
cisco
|
ios
|
The Zone-Based Firewall implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) via crafted network traffic that triggers incorrect kern…
|
CWE-399
Resource Management Errors
|
CVE-2015-0592
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277746
|
- |
|
cisco
|
secure_access_control_system
|
Multiple SQL injection vulnerabilities in the ACS View reporting interface pages in Cisco Secure Access Control System (ACS) before 5.5 patch 7 allow remote authenticated administrators to execute ar…
|
CWE-89
SQL Injection
|
CVE-2015-0580
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277747
|
- |
|
shiromuku
|
guestbook
|
Cross-site scripting (XSS) vulnerability in Mrs. Shiromuku Perl CGI shiromuku(u1)GUESTBOOK 1.62 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0871
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277748
|
- |
|
cisco
|
unified_ip_phones_9900_series_firmware
|
The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to obtain sensitive information by sniffing the network, aka Bug ID CSCuq12117.
|
CWE-200
Information Exposure
|
CVE-2015-0602
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277749
|
- |
|
cisco
|
unified_ip_phones_9900_series_firmware
|
The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to cause a denial of service (logoff) via crafted packets, aka Bug ID CSCuq12139.
|
CWE-20
Improper Input Validation
|
CVE-2015-0600
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277750
|
- |
|
cisco
|
webex_meetings_server
|
The administrative web interface in Cisco WebEx Meetings Server 1.0 through 1.5 allows remote authenticated users to execute arbitrary OS commands with root privileges via unspecified fields, aka Bug…
|
CWE-20
Improper Input Validation
|
CVE-2015-0589
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
