|
268011
|
- |
|
cisco
|
application_control_engine_module
|
Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames and (2) passwords for (a) the administrator and (b) web management, w…
|
CWE-255
Credentials Management
|
CVE-2009-0620
|
2009-02-27 14:00 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268012
|
- |
|
cisco
|
ace_4710
|
Cisco ACE 4710 Application Control Engine Appliance before A1(8a) uses default (1) usernames and (2) passwords for (a) the administrator, (b) web management, and (c) device management, which makes it…
|
CWE-16
Configuration
|
CVE-2009-0621
|
2009-02-27 14:00 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268013
|
- |
|
cisco
|
application_control_engine_module
ace_4710
|
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8…
|
NVD-CWE-Other
|
CVE-2009-0622
|
2009-02-27 14:00 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268014
|
- |
|
cisco
|
application_control_engine_module
ace_4710
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
Cisco ACE module software can be downloaded from:
http://tools.cisco.com/support/downloads/go/Redirect.…
|
NVD-CWE-Other
|
CVE-2009-0622
|
2009-02-27 14:00 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268015
|
- |
|
cisco
|
application_control_engine_module
ace_4710
|
The username command in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers and Cisco ACE 4710 Application Control Engine Appliance stores a cleartext password by …
|
CWE-310
Cryptographic Issues
|
CVE-2009-0742
|
2009-02-27 14:00 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268016
|
- |
|
cisco
|
application_control_engine_module
ace_4710
|
Note that CVE-2009-0742 is not referenced on the vendor advisory page at:
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
|
CWE-310
Cryptographic Issues
|
CVE-2009-0742
|
2009-02-27 14:00 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268017
|
- |
|
a4desk
|
a4desk_flash_event_calendar
|
SQL injection vulnerability in A4Desk PHP Event Calendar allows remote attackers to execute arbitrary SQL commands via the eventid parameter to admin/index.php.
|
CWE-89
SQL Injection
|
CVE-2008-6104
|
2009-02-26 16:06 |
2009-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268018
|
- |
|
futomi
|
access_analyzer_cgi
|
futomi CGI Cafe Access Analyzer CGI Standard 4.0.1 and earlier and Access Analyzer CGI Professional 4.11.3 and earlier use a predictable session id, which makes it easier for remote attackers to hija…
|
CWE-287
Improper Authentication
|
CVE-2008-5809
|
2009-02-26 16:05 |
2009-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268019
|
- |
|
sapporoworks
|
blackjumbodog
|
SapporoWorks BlackJumboDog (BJD) before 4.2.3 allows remote attackers to bypass authentication and obtain sensitive information via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2008-5721
|
2009-02-26 16:04 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268020
|
- |
|
eterm
|
eterm
|
Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: realistic attac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1692
|
2009-02-26 15:51 |
2008-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
