|
273351
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 allows remote authenticated users to bypass XAUTH authentication via crafted IKEv1 packets, aka Bug ID CSCu…
|
CWE-264
CWE-20
Permissions, Privileges, and Access Controls
Improper Input Validation
|
CVE-2015-0760
|
2024-11-21 11:23 |
2015-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273352
|
- |
|
fusionforge
|
fusionforge
|
The Git plugin for FusionForge before 6.0rc4 allows remote attackers to execute arbitrary code via an unspecified parameter when creating a secondary Git repository.
|
CWE-20
Improper Input Validation
|
CVE-2015-0850
|
2024-11-21 11:23 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273353
|
- |
|
cisco
|
headend_digital_broadband_delivery_system
|
Cross-site request forgery (CSRF) vulnerability in Cisco Headend Digital Broadband Delivery System allows remote attackers to hijack the authentication of arbitrary users.
|
CWE-352
CWE-20
Origin Validation Error
Improper Input Validation
|
CVE-2015-0759
|
2024-11-21 11:23 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273354
|
- |
|
cisco
|
unified_meetingplace
|
The web-based user interface in Cisco Unified MeetingPlace 8.6(1.9) allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with a…
|
CWE-200
Information Exposure
|
CVE-2015-0758
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273355
|
- |
|
cisco
|
headend_system_release
videoscape_conductor
headend_digital_broadband_delivery_system
|
Cisco Conductor for Videoscape 3.0 and Cisco Headend System Release allow remote attackers to inject arbitrary cookies via a crafted HTTP request, aka Bug ID CSCuh25408.
|
CWE-20
Improper Input Validation
|
CVE-2015-0747
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273356
|
- |
|
cisco
|
headend_system_release
headend_digital_broadband_delivery_system
|
Cisco Headend System Release allows remote attackers to read temporary script files or archive files, and consequently obtain sensitive information, via a crafted header in an HTTP request, aka Bug I…
|
CWE-200
Information Exposure
|
CVE-2015-0745
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273357
|
- |
|
cisco
|
headend_system_release
dta_control_system
headend_digital_broadband_delivery_system
|
Cisco DTA Control System (DTACS) 4.0.0.9 and Cisco Headend System Release allow remote attackers to cause a denial of service (CPU and memory consumption, and TCP service outage) via (1) a SYN flood …
|
CWE-399
Resource Management Errors
|
CVE-2015-0744
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273358
|
- |
|
cisco
|
headend_system_release
headend_digital_broadband_delivery_system
|
Cisco Headend System Release allows remote attackers to cause a denial of service (DHCP and TFTP outage) via a flood of crafted UDP traffic, aka Bug ID CSCus04097.
|
CWE-399
Resource Management Errors
|
CVE-2015-0743
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273359
|
- |
|
cisco
|
headend_digital_broadband_delivery_system
|
CRLF injection vulnerability in the HTTP Header Handler in Digital Broadband Delivery System in Cisco Headend System Release allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP…
|
CWE-113
HTTP Response Splitting
|
CVE-2015-0733
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273360
|
- |
|
canonical
wouter_verhelst
|
ubuntu_linux
nbd
|
nbd-server.c in Network Block Device (nbd-server) before 3.11 does not properly handle signals, which allows remote attackers to cause a denial of service (deadlock) via unspecified vectors.
|
CWE-17
Code
|
CVE-2015-0847
|
2024-11-21 11:23 |
2015-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
