|
289761
|
- |
|
cisco
|
ios
|
The default configuration of the Group Encrypted Transport VPN (GET VPN) feature on Cisco IOS uses an improper mechanism for enabling Group Domain of Interpretation (GDOI) traffic flow, which allows …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3436
|
2024-11-21 10:53 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289762
|
- |
|
emc
|
avamar_server
avamar_server_virtual_edition
|
EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obt…
|
CWE-20
Improper Input Validation
|
CVE-2013-3275
|
2024-11-21 10:53 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289763
|
- |
|
emc
|
avamar_server
avamar_server_virtual_edition
|
EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authen…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3274
|
2024-11-21 10:53 |
2013-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289764
|
- |
|
cisco
|
unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971
|
The Serviceability servlet on Cisco 9900 IP phones does not properly restrict paths, which allows remote attackers to read arbitrary files by specifying a pathname in a file request, aka Bug ID CSCuh…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3426
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289765
|
- |
|
cisco
|
identity_services_engine_software
identity_services_engine
|
Cross-site request forgery (CSRF) vulnerability in the web framework on the Cisco Identity Services Engine (ISE) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CS…
|
CWE-352
Origin Validation Error
|
CVE-2013-3420
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289766
|
- |
|
cisco
|
unified_communications_manager
|
Untrusted search path vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allows local users to gain privileges by leveraging unspecified file-permission and environme…
|
NVD-CWE-Other
|
CVE-2013-3434
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289767
|
- |
|
cisco
|
unified_communications_manager
|
Untrusted search path vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allows local users to gain privileges by leveraging unspecified file-permission and environme…
|
NVD-CWE-Other
|
CVE-2013-3433
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289768
|
- |
|
cisco
|
unified_communications_manager
|
SQL injection vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(2) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug I…
|
CWE-89
SQL Injection
|
CVE-2013-3412
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289769
|
- |
|
cisco
|
intrusion_prevention_system
idsm-2
|
The IDSM-2 drivers in Cisco Intrusion Prevention System (IPS) Software on Cisco Catalyst 6500 devices with an IDSM-2 module allow remote attackers to cause a denial of service (device hang) via malfo…
|
NVD-CWE-noinfo
|
CVE-2013-3411
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289770
|
- |
|
cisco
|
intrusion_prevention_system
ips_nme
|
Cisco Intrusion Prevention System (IPS) Software on IPS NME devices before 7.0(9)E4 allows remote attackers to cause a denial of service (device reload) via malformed IPv4 packets that trigger incorr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3410
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
