3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in Query/NewQueryResult.jsp in Cisco Security Monitoring, Analysis and Response System CS-MARS allows remote attackers to inject arbitrary web script or HTML via the isnowLatency parameter, aka Bug ID CSCul16173...
CVE-2007-0397
The Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.3 and Adaptive Security Device Manager ASDM before 5.22.54 do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote attackers to spoof those devices to obtain sensitiv...
CVE-2006-3734
Multiple unspecified vulnerabilities in the Command Line Interface CLI for Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root...