260041
|
- |
|
symantec
|
messaging_gateway
|
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) before 10.0 allows remote attackers to hijack the authentication of administrators.
|
CWE-352
Origin Validation Error
|
CVE-2012-0308
|
2013-10-4 03:00 |
2012-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260042
|
- |
|
cisco
|
ios_xr
|
The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote attackers to cause a denial of service (memory consumption) via UDP packets to…
|
CWE-399
Resource Management Errors
|
CVE-2013-5503
|
2013-10-4 02:58 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260043
|
- |
|
cisco
|
ironport_encryption_appliance
|
Cross-site scripting (XSS) vulnerability in the management interface on the Cisco IronPort Encryption Appliance with software before 6.5.3 allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0340
|
2013-10-4 02:56 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260044
|
- |
|
cisco
|
ironport_encryption_appliance
|
Additional information can be found at:
http://www.secureworks.com/research/advisories/SWRX-2012-001/
|
CWE-79
Cross-site Scripting
|
CVE-2012-0340
|
2013-10-4 02:56 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260045
|
- |
|
enea emerson
|
ose roc_800l_remote_terminal_unit roc_800_remote_terminal_unit dl_8000_remote_terminal_unit
|
The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote at…
|
CWE-94
Code Injection
|
CVE-2013-0689
|
2013-10-4 02:40 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260046
|
- |
|
enea emerson
|
ose dl_8000_remote_terminal_unit roc_800l_remote_terminal_unit roc_800_remote_terminal_unit
|
The Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier have hardcoded credentials in a ROM…
|
CWE-255
Credentials Management
|
CVE-2013-0694
|
2013-10-4 02:13 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260047
|
- |
|
baramundi
|
management_suite
|
An unspecified DLL file in Baramundi Management Suite 7.5 through 8.9 uses a hardcoded encryption key, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging …
|
CWE-255
Credentials Management
|
CVE-2013-3625
|
2013-10-4 02:01 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260048
|
- |
|
cisco
|
unified_computing_system
|
The clear sshkey command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug …
|
CWE-20
Improper Input Validation
|
CVE-2012-4109
|
2013-10-4 00:58 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260049
|
- |
|
baramundi
|
management_suite
|
Baramundi Management Suite 7.5 through 8.9 uses cleartext for (1) client-server communication and (2) data storage, which allows remote attackers to obtain sensitive information by sniffing the netwo…
|
CWE-310
Cryptographic Issues
|
CVE-2013-3593
|
2013-10-4 00:25 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260050
|
- |
|
cisco
|
unified_computing_system
|
The activate firmware command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka…
|
CWE-20
Improper Input Validation
|
CVE-2012-4102
|
2013-10-3 23:48 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|