5452 matches found
RHEL 4 / 5 : postfix (RHSA-2011:0422)
The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0422 advisory. - postfix improper mailbox permissions CVE-2008-2937 - postfix: SMTP commands injection during plaintext to TLS session switch...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch Advisory ID: cisco-sa-20110223-telepresence-ctms Revision 1.0 For Public Release 2011 February 23...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch Advisory ID: cisco-sa-20110223-telepresence-ctms Revision 1.0 For Public Release 2011 February 23...
CVE-2011-0390
The XML-RPC implementation on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, 1.6.x, and 1.7.0 allows remote attackers to cause a denial of service process crash via a crafted request, aka Bug ID CSCtj44534...
CVE-2011-0384
The Java Servlet framework on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug ID CSCtf01253...
CVE-2011-0387
The administrative web interface on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote authenticated users to cause a denial of service or have unspecified other impact via vectors involving access to a servlet, aka Bug ID CSCtf97164...
CVE-2011-0389
Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allow remote attackers to cause a denial of service process crash via a crafted Real-Time Transport Control Protocol RTCP UDP packet, aka Bug ID CSCth60993...
Design/Logic Flaw
The Java Servlet framework on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 and Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote...
Design/Logic Flaw
The XML-RPC implementation on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, 1.6.x, and 1.7.0 allows remote attackers to cause a denial of service process crash via a crafted request, aka Bug ID CSCtj44534...
Design/Logic Flaw
The administrative web interface on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote authenticated users to cause a denial of service or have unspecified other impact via vectors involving access to a servlet, aka Bug ID CSCtf97164...
Code injection
Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allow remote attackers to cause a denial of service process crash via a crafted Real-Time Transport Control Protocol RTCP UDP packet, aka Bug ID CSCth60993...
CVE-2011-0387
Cisco TelePresence Multipoint Switch (CTMS) is affected by CVE-2011-0387, tied to Unauthenticated Servlet Access in the administrative web interface. Cisco’s advisory indicates CTMS releases prior to 1.7.1 (covering 1.0.x, 1.1.x, 1.5.x, 1.6.x) are vulnerable. The issue allows a remote, authentica...
CVE-2011-0384
The Java Servlet framework on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug ID CSCtf01253...
CVE-2011-0389
Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allow remote attackers to cause a denial of service process crash via a crafted Real-Time Transport Control Protocol RTCP UDP packet, aka Bug ID CSCth60993...
CVE-2011-0388
Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x do not properly restrict remote access to the Java servlet RMI interface, which allows remote attackers to cause a denial of service...
CVE-2011-0390
The XML-RPC implementation on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, 1.6.x, and 1.7.0 allows remote attackers to cause a denial of service process crash via a crafted request, aka Bug ID CSCtj44534...
CVE-2011-0388
CVE-2011-0388 affects Cisco TelePresence Recording Server (software 1.6.x) and Cisco TelePresence Multipoint Switch (CTMS) (software 1.0.x, 1.1.x, 1.5.x, 1.6.x). The issue is that remote access to the Java servlet RMI interface is not properly restricted, enabling unauthenticated remote attackers...
CVE-2011-0389
CVE-2011-0389 is a vulnerability in Cisco TelePresence Multipoint Switch (CTMS) devices affecting software 1.0.x, 1.1.x, 1.5.x and 1.6.x. A remote, unauthenticated attacker can crash the call control process by sending a crafted RTCP UDP packet, causing a denial of service. The Cisco advisory and...
CVE-2011-0387
The administrative web interface on Cisco TelePresence Multipoint Switch CTMS devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote authenticated users to cause a denial of service or have unspecified other impact via vectors involving access to a servlet, aka Bug ID CSCtf97164...
Joomla XCloner Remote Command Execution
!/usr/bin/python Joomla component comxcloner-backupandrestore remote code execution exploit Vendor: http://www.xcloner.com/ "Our true divinity is in our ability to create. And armed with the understanding of the symbiotic connections of life, while being guided by the emergent nature of reality,...