|
277341
|
- |
|
cisco
|
unified_meetingplace
|
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) for Microsoft Outlook allows remote attackers to inject arbitrary web script o…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0762
|
2024-11-21 11:23 |
2015-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277342
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
Cisco AnyConnect Secure Mobility Client before 3.1(8009) and 4.x before 4.0(2052) on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileg…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0761
|
2024-11-21 11:23 |
2015-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277343
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 allows remote authenticated users to bypass XAUTH authentication via crafted IKEv1 packets, aka Bug ID CSCu…
|
CWE-264
CWE-20
Permissions, Privileges, and Access Controls
Improper Input Validation
|
CVE-2015-0760
|
2024-11-21 11:23 |
2015-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277344
|
- |
|
fusionforge
|
fusionforge
|
The Git plugin for FusionForge before 6.0rc4 allows remote attackers to execute arbitrary code via an unspecified parameter when creating a secondary Git repository.
|
CWE-20
Improper Input Validation
|
CVE-2015-0850
|
2024-11-21 11:23 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277345
|
- |
|
cisco
|
headend_digital_broadband_delivery_system
|
Cross-site request forgery (CSRF) vulnerability in Cisco Headend Digital Broadband Delivery System allows remote attackers to hijack the authentication of arbitrary users.
|
CWE-352
CWE-20
Origin Validation Error
Improper Input Validation
|
CVE-2015-0759
|
2024-11-21 11:23 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277346
|
- |
|
cisco
|
unified_meetingplace
|
The web-based user interface in Cisco Unified MeetingPlace 8.6(1.9) allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with a…
|
CWE-200
Information Exposure
|
CVE-2015-0758
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277347
|
- |
|
cisco
|
headend_system_release
videoscape_conductor
headend_digital_broadband_delivery_system
|
Cisco Conductor for Videoscape 3.0 and Cisco Headend System Release allow remote attackers to inject arbitrary cookies via a crafted HTTP request, aka Bug ID CSCuh25408.
|
CWE-20
Improper Input Validation
|
CVE-2015-0747
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277348
|
- |
|
cisco
|
headend_system_release
headend_digital_broadband_delivery_system
|
Cisco Headend System Release allows remote attackers to read temporary script files or archive files, and consequently obtain sensitive information, via a crafted header in an HTTP request, aka Bug I…
|
CWE-200
Information Exposure
|
CVE-2015-0745
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277349
|
- |
|
cisco
|
headend_system_release
dta_control_system
headend_digital_broadband_delivery_system
|
Cisco DTA Control System (DTACS) 4.0.0.9 and Cisco Headend System Release allow remote attackers to cause a denial of service (CPU and memory consumption, and TCP service outage) via (1) a SYN flood …
|
CWE-399
Resource Management Errors
|
CVE-2015-0744
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277350
|
- |
|
cisco
|
headend_system_release
headend_digital_broadband_delivery_system
|
Cisco Headend System Release allows remote attackers to cause a denial of service (DHCP and TFTP outage) via a flood of crafted UDP traffic, aka Bug ID CSCus04097.
|
CWE-399
Resource Management Errors
|
CVE-2015-0743
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
