|
266311
|
7.5 |
HIGH
Network
|
cisco
|
asyncos
|
Cisco AsyncOS on Email Security Appliance (ESA) devices through 9.7.0-125 allows remote attackers to bypass malware detection via a crafted attachment in an e-mail message, aka Bug ID CSCuz14932.
|
CWE-20
Improper Input Validation
|
CVE-2016-1461
|
2024-11-21 11:46 |
2016-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266312
|
6.5 |
MEDIUM
Adjacent
|
cisco
|
videoscape_session_resource_manager
|
Cisco Videoscape Session Resource Manager (VSRM) allows remote attackers to cause a denial of service (device restart) by sending a traffic flood to upstream devices, aka Bug ID CSCva01813.
|
CWE-399
Resource Management Errors
|
CVE-2016-1467
|
2024-11-21 11:46 |
2016-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266313
|
6.5 |
MEDIUM
Adjacent
|
cisco
|
nx-os
|
Cisco Nexus 1000v Application Virtual Switch (AVS) devices before 5.2(1)SV3(1.5i) allow remote attackers to cause a denial of service (ESXi hypervisor crash and purple screen) via a crafted Cisco Dis…
|
CWE-399
Resource Management Errors
|
CVE-2016-1465
|
2024-11-21 11:46 |
2016-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266314
|
7.5 |
HIGH
Network
|
cisco
|
firesight_system_software
|
Cisco FireSIGHT System Software 5.3.0, 5.3.1, 5.4.0, 6.0, and 6.0.1 allows remote attackers to bypass Snort rules via crafted parameters in the header of an HTTP packet, aka Bug ID CSCuz20737.
|
CWE-20
Improper Input Validation
|
CVE-2016-1463
|
2024-11-21 11:46 |
2016-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266315
|
6.1 |
MEDIUM
Network
|
cisco
|
prime_service_catalog
|
Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Prime Service Catalog (PSC) 11.0 allows remote attackers to inject arbitrary web script or HTML via a crafted v…
|
CWE-79
Cross-site Scripting
|
CVE-2016-1462
|
2024-11-21 11:46 |
2016-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266316
|
6.5 |
MEDIUM
Adjacent
|
cisco
|
wireless_lan_controller_software
|
Cisco Wireless LAN Controller (WLC) devices 7.4(121.0) and 8.0(0.30220.385) allow remote attackers to cause a denial of service via crafted wireless management frames, aka Bug ID CSCun92979.
|
CWE-399
Resource Management Errors
|
CVE-2016-1460
|
2024-11-21 11:46 |
2016-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266317
|
8.8 |
HIGH
Network
|
cisco
|
unified_computing_system_performance_manager
|
The web framework in Cisco Unified Computing System (UCS) Performance Manager 2.0.0 and earlier allows remote authenticated users to execute arbitrary commands via crafted parameters in a GET request…
|
CWE-20
Improper Input Validation
|
CVE-2016-1374
|
2024-11-21 11:46 |
2016-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266318
|
8.8 |
HIGH
Network
|
google
|
chrome
|
WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not disable frame navigation during a detach operation on a DocumentLoader object, which allows …
|
CWE-285
Improper Authorization
|
CVE-2016-1711
|
2024-11-21 11:46 |
2016-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266319
|
8.8 |
HIGH
Network
|
google
|
chrome
|
The ChromeClientImpl::createWindow method in WebKit/Source/web/ChromeClientImpl.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not prevent window creation by a deferred frame, which…
|
CWE-285
Improper Authorization
|
CVE-2016-1710
|
2024-11-21 11:46 |
2016-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266320
|
8.8 |
HIGH
Network
|
google
|
sfntly
chrome
|
Heap-based buffer overflow in the ByteArray::Get method in data/byte_array.cc in Google sfntly before 2016-06-10, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a deni…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1709
|
2024-11-21 11:46 |
2016-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
