|
275141
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
The administrator web interface in Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows remote authenticated users to execute arbitrary OS commands via crafted HTTP requests, aka Bug ID …
|
CWE-20
Improper Input Validation
|
CVE-2015-4329
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275142
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The Unicast Reverse Path Forwarding (uRPF) implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(1.50), 9.3(2.100), 9.3(3), and 9.4(1) mishandles cases where an IP address belongs to…
|
CWE-20
Improper Input Validation
|
CVE-2015-4321
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275143
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
The password-change feature in the administrative web interface in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1 improperly performs authorization, which allows remote authent…
|
CWE-255
Credentials Management
|
CVE-2015-4319
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275144
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
The Mobile and Remote Access (MRA) endpoint-validation feature in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 improperly validates the phone line used for registration, whic…
|
CWE-20
Improper Input Validation
|
CVE-2015-4316
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275145
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows remote authenticated users to execute arbitrary commands in the context of the nobody user account via an unspecified web-page parame…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4303
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275146
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 improperly checks for a user account's read-only attribute, which allows remote authenticated users to execute arbitrary OS comma…
|
CWE-20
Improper Input Validation
|
CVE-2015-4328
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275147
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
The CLI in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to obtain root privileges by writing script arguments to an unspecified file, aka Bug ID CSCuv12542.
|
CWE-20
Improper Input Validation
|
CVE-2015-4327
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275148
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
The Configuration Log File component in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authenticated users to obtain sensitive information by reading a log file, …
|
CWE-200
Information Exposure
|
CVE-2015-4320
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275149
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote attackers to cause a denial of service via invalid variables in an authentication packet, aka Bug ID CSCuv40469.
|
CWE-399
Resource Management Errors
|
CVE-2015-4317
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275150
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
The Call Policy Configuration page in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.3 improperly validates external DTDs, which allows remote authenticated users to read arbitra…
|
CWE-20
Improper Input Validation
|
CVE-2015-4315
|
2024-11-21 11:30 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
