PT-2008-3573 · Cisco · Cisco Pix Security Appliance +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA and Cisco PIX security appliance versions 8.0.x through 8.038 Cisco Adaptive Security Appliance ASA and Cisco PIX security appliance versions 8.1.x through 8.110 Description: The issue allows remote...

Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service Vulnerabilities Advisory ID: cisco-sa-20080521-ssh http://www.cisco.com/warp/public/707/cisco-sa-20080521-ssh.shtml Revision 1.0 For Public Release 2008 May 21 1600 UTC GMT...

Cisco IOS Secure Shell Denial of Service Vulnerabilities

The Secure Shell server SSH implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The IOS SSH server is an optional service that is disabled by default, but its...

Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module Advisory ID: cisco-sa-20071219-fwsm ============ Revision 1.0 ============ Last Updated 2007 December 19 1600 UTC GMT For Public Release 2007 December 19...

CVE-2007-5651

Unspecified vulnerability in the Extensible Authentication Protocol EAP implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges Wireless EAP devices, IOS 12.1 and 12.2 on Cisco switches Wired EAP devices, and CatOS 6.x through 8.x on Cisco switches allows remote...

Moderate: gcc security and bug fix update

3.2.3-59 - fix directory traversal bug in fastjar Richard Guenther, 225552, CVE-2006-3619 - fix a reload bug with -fnon-call-exceptions Alexandre Oliva, 226706...

CentOS 3 : gcc (CESA-2007:0473)

Updated gcc packages that fix a security issue and another bug are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gcc packages include C, C++, Java, Fortran 77, Objective C, and Ada 95 GNU compilers and related support...

cpp, gcc, libf2c, libgcc, libgcj, libgnat, libobjc, libstdc++ security update

CentOS Errata and Security Advisory CESA-2007:0473 Updated gcc packages that fix a security issue and another bug are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gcc packages include C, C++, Java, Fortran 77, Objective C,...

Moderate: Red Hat Security Advisory: gcc security and bug fix update

Updated gcc packages that fix a security issue and another bug are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gcc packages include C, C++, Java, Fortran 77, Objective C, and Ada 95 GNU compilers and related support...

security flaw

The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 can generate hash collisions that cause page data to be appended to the wrong page cache, which allows remote attackers to obtain sensitive information or enable further attack vectors whe...

CVE-2007-1258

Unspecified vulnerability in Cisco IOS 12.2SXA, SXB, SXD, and SXF; and the MSFC2, MSFC2a and MSFC3 running in Hybrid Mode on Cisco Catalyst 6000, 6500 and Cisco 7600 series systems; allows remote attackers on a local network segment to cause a denial of service software reload via a certain MPLS...

Cisco Firewall Services Module HTTPS Traffic Temporary Denial of Service Vulnerability

Cisco Firewall Services Module versions versions prior to 3.13.11 contain a vulnerability that could allow an unauthenticated, remote attacker to create a denial of service DoS condition. The vulnerability is due to an error when the embedded HTTPS server handles certain types of requests. An...

Sql injection

SQL injection vulnerability in badword.asp in Ublog Reload 1.0.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

CVE-2007-0799

SQL injection vulnerability in badword.asp in Ublog Reload 1.0.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Ublog Reload 1.0.5 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 login.asp; and allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters to 2 badword.asp,...

CVE-2007-0798

Multiple cross-site scripting XSS vulnerabilities in Ublog Reload 1.0.5 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 login.asp; and allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters to 2 badword.asp,...

CVE-2007-0798

CVE-2007-0798 affects Ublog Reload 1.0.5. The issue comprises multiple cross-site scripting (XSS) vulnerabilities allowing an attacker to inject arbitrary web script or HTML via unspecified parameters to (1) login.asp (remote, unauthenticated) and (2–4) badword.asp, polls.asp, and users.asp (remo...

CVE-2007-0798

Multiple cross-site scripting XSS vulnerabilities in Ublog Reload 1.0.5 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 login.asp; and allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters to 2 badword.asp,...

CVE-2007-0799

CVE-2007-0799 involves a SQL injection in badword.asp of Ublog Reload 1.0.5. The vulnerability arises from improper handling of user-supplied input, enabling remote attackers to execute arbitrary SQL commands via unspecified vectors. Affected product/version: Ublog Reload 1.0.5; vulnerable compon...

CVE-2007-0799

SQL injection vulnerability in badword.asp in Ublog Reload 1.0.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...