264531
|
- |
|
cisco
|
telepresence_recording_server_software telepresence_recording_server
|
The CGI subsystem on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 allows remote attackers to execute arbitrary commands via a request to TCP port 443, related to a "co…
|
CWE-78
OS Command
|
CVE-2011-0382
|
2011-04-9 12:32 |
2011-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264532
|
- |
|
cisco
|
adaptive_security_appliance_software 5500_series_adaptive_security_appliance asa_5500 telepresence_multipoint_switch_software telepresence_multipoint_switch telepresence_system_softwar…
|
Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0379
|
2011-04-9 12:32 |
2011-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264533
|
- |
|
cisco
|
telepresence_recording_server_software telepresence_recording_server telepresence_multipoint_switch_software telepresence_multipoint_switch
|
Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x do not properly restrict remote ac…
|
CWE-399
Resource Management Errors
|
CVE-2011-0388
|
2011-04-9 12:32 |
2011-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264534
|
- |
|
micronetsoft
|
rv_dealer_website
|
Multiple SQL injection vulnerabilities in MicroNetsoft RV Dealer Website allow remote attackers to execute arbitrary SQL commands via the (1) selStock parameter to search.asp and the (2) orderBy para…
|
CWE-89
SQL Injection
|
CVE-2010-4362
|
2011-04-9 12:31 |
2010-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264535
|
- |
|
infradead
|
openconnect
|
OpenConnect before 2.26 places the webvpn cookie value in the debugging output, which might allow remote attackers to obtain sensitive information by reading this output, as demonstrated by output po…
|
CWE-200
Information Exposure
|
CVE-2010-3902
|
2011-04-9 12:29 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264536
|
- |
|
ibm
|
websphere_application_server
|
The Plug-in component in IBM WebSphere Application Server (WAS) before 7.0.0.15 does not properly handle trace requests, which has unspecified impact and attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2011-1309
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264537
|
- |
|
ibm
|
websphere_application_server
|
The Administrative Scripting Tools component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15, when tracing is enabled, places wsadmin command parameters into…
|
CWE-200
Information Exposure
|
CVE-2011-1310
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264538
|
- |
|
ibm
|
websphere_application_server
|
The Security component in IBM WebSphere Application Server (WAS) before 7.0.0.15, when a J2EE 1.4 application is used, determines the security role mapping on the basis of the ibm-application-bnd.xml…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1311
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264539
|
- |
|
ibm
|
websphere_application_server
|
The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.31 and 7.x before 7.0.0.15 does not prevent modifications of the primary admin id, which allows rem…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1312
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264540
|
- |
|
ibm
|
websphere_application_server
|
Double free vulnerability in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15 allows remote backend IIOP servers to cause a denial of service (S0C4 ABEND and sto…
|
CWE-399
Resource Management Errors
|
CVE-2011-1313
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|