37 matches found
CVE-2016-1391
Cisco Prime Network Analysis Module NAM before 6.11 patch.6.1-2-final and 6.2.x before 6.22 and Prime Virtual Network Analysis Module vNAM before 6.11 patch.6.1-2-final and 6.2.x before 6.22 allow remote authenticated users to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID...
CVE-2016-1388
Cisco Prime Network Analysis Module NAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 and Prime Virtual Network Analysis Module vNAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 allow remote attackers to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuy21882...
CVE-2016-1388
Cisco Prime Network Analysis Module NAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 and Prime Virtual Network Analysis Module vNAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 allow remote attackers to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuy21882...
Input validation
Cisco Prime Network Analysis Module NAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 and Prime Virtual Network Analysis Module vNAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 allow remote attackers to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuy21882...
CVE-2016-1388
CVE-2016-1388 affects Cisco Prime Network Analysis Module (NAM) and Prime Virtual Network Analysis Module (vNAM). Affected versions allow remote attackers to execute arbitrary OS commands via a crafted HTTP request due to improper input handling. Exploitation status is not detailed in the provide...
Cisco Prime Network Analysis Module Remote Code Execution Vulnerability (CNVD-2016-03804)
The Cisco Prime Network Analysis Module is a network analysis module that is part of the overall Cisco Prime solution. A remote code execution vulnerability exists in the web interface of Cisco NAM/vNAM. An unauthenticated, remote attacker could exploit this vulnerability to execute arbitrary...
Cisco Prime Network Analysis Module Authenticated Remote Code Execution Vulnerability
A vulnerability in the web interface of Cisco Prime Network Analysis Module NAM and Cisco Prime Virtual Network Analysis Module vNAM could allow an authenticated, remote attacker to execute arbitrary commands or code on the host operating system with the privileges of the web server. The...
Cisco Prime Network Analysis Module Local Command Injection Vulnerability
A vulnerability in the command-line interface CLI of Cisco Prime Network Analysis Module NAM and Cisco Prime Virtual Network Analysis Module vNAM could allow a local, authenticated attacker to execute arbitrary commands on the host operating system with elevated privileges. The vulnerability is d...
Cisco Network Analysis Module Detection (SSH Login)
SSH login-based detection of Cisco Network Analysis Module. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Cisco Network Analysis Module (NAM) Detection (HTTP)
HTTP based detection of the Cisco Network Analysis Module NAM. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Cisco Network Analysis Module Cross-Site Scripting Vulnerability
Cisco is a leading global provider of networking solutions. A cross-site scripting vulnerability exists in Cisco Network Analysis Module due to a failure to adequately validate input. An attacker could exploit the vulnerability by convincing a NAM user to visit a malicious Web site...
Cisco Network Analysis Module Cross-Site Scripting Vulnerability
A vulnerability in the login page of the Cisco Network Analysis Module NAM could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by convincing the NAM us...
Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM (Network Analysis Module) Vulnerability
Cisco Catalyst 6000, 6500 series and Cisco 7600 series that have a Network Analysis Module installed are affected by a vulnerability, which could allow an attacker to gain complete control of the system. Only Cisco Catalyst systems that have a NAM on them are affected. This vulnerability affects...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in 1 PreSearch.html and 2 PreSearch.class in Cisco Secure Access Control Server ACS, VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator, Unified Video Advantage...
Design/Logic Flaw
The Network Analysis Module NAM in Cisco Catalyst Series 6000, 6500, and 7600 allows remote attackers to execute arbitrary commands via certain SNMP packets that are spoofed from the NAM's own IP address...
Cisco Security Advisory: Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM (Network Analysis Module) Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM Network Analysis Module Vulnerability Advisory ID: cisco-sa-20070228-nam Revision 1.0 For Public Release 2007 February 28 -...
Cisco Catalist Network Analysis Module unauthorized SNMP access
It's possible to get full access to device via spoofed SNMP packets...