|
281411
|
- |
|
crear.ne.jp
|
al-mail32
|
Buffer overflow in CREAR AL-Mail32 before 1.13d allows remote attackers to execute arbitrary code via a long filename of an attachment.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-0880
|
2024-11-21 11:23 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281412
|
- |
|
almail
|
al-mail32
|
CREAR AL-Mail32 before 1.13d allows remote attackers to cause a denial of service (application crash) via a (1) CON, (2) AUX, or (3) NUL device name in the filename of an attachment.
|
CWE-20
Improper Input Validation
|
CVE-2015-0879
|
2024-11-21 11:23 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281413
|
- |
|
almail
|
al-mail32
|
Directory traversal vulnerability in CREAR AL-Mail32 before 1.13d allows remote attackers to write to arbitrary files via a crafted filename of an attachment.
|
CWE-22
Path Traversal
|
CVE-2015-0878
|
2024-11-21 11:23 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281414
|
- |
|
cisco
|
web_security_appliance
|
The proxy engine on Cisco Web Security Appliance (WSA) devices allows remote attackers to bypass intended proxying restrictions via a malformed HTTP method, aka Bug ID CSCus79174.
|
CWE-200
Information Exposure
|
CVE-2015-0628
|
2024-11-21 11:23 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281415
|
- |
|
cisco
|
desktop_collaboration_experience_dx650
|
The image-upgrade implementation on Cisco Desktop Collaboration Experience (aka Collaboration Desk Experience or DX) DX650 endpoints allows local users to execute arbitrary OS commands via an unspeci…
|
CWE-20
Improper Input Validation
|
CVE-2015-0584
|
2024-11-21 11:23 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281416
|
- |
|
cisco
|
hosted_collaboration_solution
|
The SOAP interface in Cisco Hosted Collaboration Solution (HCS) allows remote attackers to obtain access to system-management tools via crafted Challenge SOAP calls, aka Bug ID CSCuc38114.
|
CWE-20
Improper Input Validation
|
CVE-2015-0626
|
2024-11-21 11:23 |
2015-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281417
|
- |
|
cisco
|
web_security_appliance
|
Cross-site scripting (XSS) vulnerability in the Administrator report page on Cisco Web Security Appliance (WSA) devices allows remote attackers to inject arbitrary web script or HTML via unspecified …
|
CWE-79
Cross-site Scripting
|
CVE-2015-0623
|
2024-11-21 11:23 |
2015-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281418
|
- |
|
cisco
|
wireless_lan_controller
|
The Wireless Intrusion Detection (aka WIDS) functionality on Cisco Wireless LAN Controller (WLC) devices allows remote attackers to cause a denial of service (device outage) via crafted packets that …
|
CWE-20
Improper Input Validation
|
CVE-2015-0622
|
2024-11-21 11:23 |
2015-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281419
|
- |
|
cisco
|
telepresence_mcu_4500_series_software
|
Cisco TelePresence MCU devices with software 4.5(1.45) allow remote attackers to cause a denial of service (device reload) via an unspecified series of TCP packets, aka Bug ID CSCur50347.
|
CWE-19
Data Processing Errors
|
CVE-2015-0621
|
2024-11-21 11:23 |
2015-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281420
|
- |
|
cisco
|
telepresence_management_suite
|
The XML parser in Cisco TelePresence Management Suite (TMS) 14.3(.2) and earlier does not properly handle external entities, which allows remote authenticated users to cause a denial of service via P…
|
CWE-20
Improper Input Validation
|
CVE-2015-0620
|
2024-11-21 11:23 |
2015-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
