|
259641
|
- |
|
cisco
|
nx-os
nexus_5000
|
The igmp_snoop_orib_fill_source_update function in the IGMP process in NX-OS 5.0 and 5.1 on Cisco Nexus 5000 series switches allows remote attackers to cause a denial of service (device reload) via I…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1357
|
2012-08-8 05:14 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259642
|
- |
|
cisco
|
wide_area_application_services
|
Cisco Wide Area Application Services (WAAS) appliances with software 4.4, 5.0, and 5.1 include a one-way hash of a password within output text, which might allow remote attackers to obtain sensitive …
|
CWE-200
Information Exposure
|
CVE-2012-1348
|
2012-08-8 05:02 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259643
|
- |
|
cisco
|
emergency_responder
|
Cisco Emergency Responder 8.6 and 9.2 allows remote attackers to cause a denial of service (CPU consumption) by sending malformed UDP packets to the CERPT port, aka Bug ID CSCtx38369.
|
CWE-399
Resource Management Errors
|
CVE-2012-1346
|
2012-08-8 04:57 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259644
|
- |
|
cisco
|
ip_communicator
|
Cisco IP Communicator 8.6 allows man-in-the-middle attackers to modify the Certificate Trust List via unspecified vectors, aka Bug ID CSCtz01471.
|
CWE-20
Improper Input Validation
|
CVE-2012-2490
|
2012-08-8 04:47 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259645
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
Cisco AnyConnect Secure Mobility Client 3.0 through 3.0.08066 does not ensure that authentication makes use of a legitimate certificate, which allows user-assisted man-in-the-middle attackers to spoo…
|
CWE-287
Improper Authentication
|
CVE-2012-2498
|
2012-08-7 13:00 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259646
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
The IPsec implementation in Cisco AnyConnect Secure Mobility Client 3.0 before 3.0.08057 does not verify the certificate name in an X.509 certificate, which allows man-in-the-middle attackers to spoo…
|
CWE-310
Cryptographic Issues
|
CVE-2012-2499
|
2012-08-7 13:00 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259647
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
Cisco AnyConnect Secure Mobility Client 3.0 before 3.0.08057 does not verify the certificate name in an X.509 certificate during WebLaunch of IPsec, which allows man-in-the-middle attackers to spoof …
|
CWE-310
Cryptographic Issues
|
CVE-2012-2500
|
2012-08-7 13:00 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259648
|
- |
|
siemens
|
synco_ozw_web_server
synco_ozw_web_server_firmware
|
The Siemens Synco OZW Web Server devices OZW672.*, OZW772.*, and OZW775 with firmware before 4 have an unspecified default password, which makes it easier for remote attackers to obtain administrativ…
|
CWE-255
Credentials Management
|
CVE-2012-3020
|
2012-08-7 13:00 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259649
|
- |
|
opera
|
opera_browser
|
Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, ignores some characters in HTML documents in unspecified circumstances, which makes it easier for remote at…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4142
|
2012-08-7 13:00 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259650
|
- |
|
opera
|
opera_browser
|
Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, allows user-assisted remote attackers to trick users into downloading and executing arbitrary files via a s…
|
CWE-94
Code Injection
|
CVE-2012-4143
|
2012-08-7 13:00 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
