125 matches found
CVE-2006-3732
Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows attackers to obtain sensitive information...
CVE-2006-3733
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp...
Cisco/Protego CS-MARS < 4.2.1 - 'JBoss' Remote Code Execution
!/usr/bin/perl Cisco/Protego CS-MARS Addressed in CSCse47646 CS-MARS is an event correlation product orginally written by Protego, which is now owned by Cisco. It is built on top of JBoss. Unfortunately, little or no effort was put in to securing the JBoss installation as per the JBoss community'...
CiscoProtego CS-MARS 4.2.1 - JBoss Remote Code Execution
CiscoProtego CS-MARS 4.2.1 - JBoss Remote Code Execution !/usr/bin/perl Cisco/Protego CS-MARS Addressed in CSCse47646 CS-MARS is an event correlation product orginally written by Protego, which is now owned by Cisco. It is built on top of JBoss. Unfortunately, little or no effort was put in to...
Cisco/Protego CS-MARS < 4.2.1 (JBoss) Remote Code Execution Exploit
No description provided by source. !/usr/bin/perl Cisco/Protego CS-MARS 4.2.1 remote command execution, system compromise via insecure JBoss installation. Fully functional POC code by Jon Hart [email protected] Addressed in CSCse47646 CS-MARS is an event correlation product orginally written by...
Cisco/Protego CS-MARS < 4.2.1 (JBoss) Remote Code Execution Exploit
Exploit for hardware platform in category remote exploits =================================================================== Cisco/Protego CS-MARS Addressed in CSCse47646 CS-MARS is an event correlation product orginally written by Protego, which is now owned by Cisco. It is built on top of JBos...
CVE-2006-3734
Multiple unspecified vulnerabilities in the Command Line Interface CLI for Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root...
CVE-2006-3732
Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows attackers to obtain sensitive information...
CVE-2006-3733
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp...
CVE-2006-3734
Cisco CS-MARS (Security Monitoring, Analysis and Response System) prior to version 4.2.1 contains multiple vulnerabilities in the CLI that allow local administrators to execute arbitrary commands as root. Affected component is the CLI interface; root-level privilege escalation is the impact state...
CVE-2006-3732
CS-MARS (Cisco Security Monitoring, Analysis and Response System) is affected before version 4.2.1 due to an Oracle database that ships with default accounts and passwords, enabling attackers to obtain sensitive information. The sources explicitly tie this to CS-MARS and the vulnerable component ...
CVE-2006-3733
The CVE describes a vulnerability in CS-MARS where jmx-console/HtmlAdaptor in the JBoss web server allows a remote attacker to gain CS-MARS administrator privileges and execute arbitrary Java code via an invokeOp action in the BSHDeployer jboss.scripts service name. Affected product is Cisco CS-M...
Cisco Security Monitoring Analysis and Response System JBoss - Command Execution
Cisco Security Monitoring Analysis and Response System JBoss - Command Execution source: https://www.securityfocus.com/bid/19075/info Cisco Security Monitoring, Analysis and Response System CS-MARS is prone to a vulnerability that could permit the execution of arbitrary commands. An attacker coul...
Cisco Security Monitoring Analysis and Response System JBoss - Command Execution
source: https://www.securityfocus.com/bid/19075/info Cisco Security Monitoring, Analysis and Response System CS-MARS is prone to a vulnerability that could permit the execution of arbitrary commands. An attacker could exploit this issue to execute arbitrary commands with administrative privileges...
CVE-2006-0181
Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.1.3 has an undocumented administrative account with a default password, which allows local users to gain privileges via the expert command...
CVE-2006-0181
CS-MARS (Cisco Security Monitoring, Analysis and Response System) is affected by CVE-2006-0181 in versions before 4.1.3 due to an undocumented administrative account with a default password that allows local privilege escalation via the expert command. This is the concrete vulnerability described...
Default credentials
Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.1.3 has an undocumented administrative account with a default password, which allows local users to gain privileges via the expert command...
Cisco Security Advisory: Default Administrative Password in Cisco Security Monitoring, Analysis and Response System (CS-MARS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: ======================== Default Administrative Password in Cisco Security Monitoring, Analysis ====================================================================== and Response System CS-MARS =============================...
CVE-1999-0774
Buffer overflows in Mars NetWare Emulation NWE, marsnwe package via long directory names...
CVE-1999-0774
The CVE-1999-0774 issue affects the Mars NetWare Emulation (NWE, mars_nwe) package, with a buffer overflow vulnerability triggered by long directory names. This is evidenced by multiple sources (NVD, Red Hat CVE entry, CVE list) describing a buffer overflow in mars_nwe. The Red Hat entry corrobor...