|
282691
|
- |
|
cisco
|
rvs4000_firmware
rvs4000
wrvs4400n_firmware
wrvs4400n
wap4410n_firmware
wap4410n
|
The Cisco WAP4410N access point with firmware through 2.0.6.1, WRVS4400N router with firmware 1.x through 1.1.13 and 2.x through 2.0.2.1, and RVS4000 router with firmware through 2.0.3.2 allow remote…
|
CWE-78
OS Command
|
CVE-2014-0659
|
2024-11-21 11:02 |
2014-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282692
|
- |
|
juniper
|
junos
srx100
srx110
srx1400
srx210
srx220
srx240
srx3400
srx3600
srx550
srx5600
srx5800
srx650
|
Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforc…
|
NVD-CWE-noinfo
|
CVE-2014-0618
|
2024-11-21 11:02 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282693
|
- |
|
cisco
|
unity_connection
|
The server in Cisco Unity Connection allows remote authenticated users to cause a denial of service (CPU consumption) via unspecified IMAP commands, aka Bug ID CSCul49976.
|
CWE-399
Resource Management Errors
|
CVE-2014-0664
|
2024-11-21 11:02 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282694
|
- |
|
cisco
|
secure_access_control_system
|
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0663
|
2024-11-21 11:02 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282695
|
- |
|
cisco
|
unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971
|
Cisco 9900 Unified IP phones allow remote attackers to cause a denial of service (unregistration) via a crafted SIP header, aka Bug ID CSCul24898.
|
CWE-20
Improper Input Validation
|
CVE-2014-0658
|
2024-11-21 11:02 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282696
|
- |
|
ecava
|
integraxor
|
The SCADA server in Ecava IntegraXor before 4.1.4369 allows remote attackers to read arbitrary project backup files via a crafted URL.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0752
|
2024-11-21 11:02 |
2014-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282697
|
- |
|
cisco
|
unified_communications_manager
|
The administration portal in Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier does not properly handle role restrictions, which allows remote authenticated users to bypass role-ba…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0657
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282698
|
- |
|
cisco
|
context_directory_agent
|
Cisco Context Directory Agent (CDA) allows remote authenticated users to trigger the omission of certain user-interface data via crafted field values, aka Bug ID CSCuj45353.
|
CWE-20
Improper Input Validation
|
CVE-2014-0656
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282699
|
- |
|
cisco
|
adaptive_security_appliance
|
The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to change the user-cache contents via a replay attack involving crafted RADIUS C…
|
CWE-20
Improper Input Validation
|
CVE-2014-0655
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282700
|
- |
|
cisco
|
context_directory_agent
|
Cisco Context Directory Agent (CDA) allows remote attackers to modify the cache via a replay attack involving crafted RADIUS accounting messages, aka Bug ID CSCuj45383.
|
CWE-20
Improper Input Validation
|
CVE-2014-0654
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
