18 matches found
EUVD-2009-0621
Malware in sbrugna...
EUVD-2015-0664
Malware in sbrugna...
EUVD-2009-0619
Malware in sbrugna...
EUVD-2009-0618
Malware in sbrugna...
EUVD-2009-0620
Malware in sbrugna...
CVE-2009-0616
Cisco Application Networking Manager ANM before 2.0 uses default usernames and passwords, which makes it easier for remote attackers to access the application, or cause a denial of service via configuration changes, related to "default user credentials during installation."...
CVE-2009-0618
Unspecified vulnerability in the Java agent in Cisco Application Networking Manager ANM before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service service outage by stopping processes, or obtain sensitive information by reading configuration files...
CVE-2009-0617
Cisco Application Networking Manager ANM before 2.0 uses a default MySQL root password, which makes it easier for remote attackers to execute arbitrary operating-system commands or change system files...
CVE-2009-0615
Directory traversal vulnerability in Cisco Application Networking Manager ANM before 2.0 and Application Control Engine ACE Device Manager before A32.1 allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to "invalid directory permissions."...
Cisco Application Networking Manager Cross-Site Request Forgery Vulnerability
Cisco Application Networking Manager is the United States Cisco Cisco company a set of network application management tools. A cross-site request forgery vulnerability exists in Cisco Application Networking Manager. A remote attacker could use this vulnerability to submit arbitrary requests with...
CVE-2015-0651
Cross-site request forgery CSRF vulnerability in the web GUI in Cisco Application Networking Manager ANM, and Device Manager DM on Cisco 4710 Application Control Engine ACE appliances, allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuo99753...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the web GUI in Cisco Application Networking Manager ANM, and Device Manager DM on Cisco 4710 Application Control Engine ACE appliances, allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuo99753...
CVE-2013-1196
The command-line interface in Cisco Secure Access Control System ACS, Identity Services Engine Software, Context Directory Agent, Application Networking Manager ANM, Prime Network Control System, Prime LAN Management Solution LMS, Prime Collaboration, Unified Provisioning Manager, Network Service...
Cisco Application Networking Manager Default User Credentials Security Bypass (CVE-2009-0616)
Cisco Application Networking Manager ANM is a network management application that manages Cisco Application Control Engine ACE modules or appliances. The vulnerability is due to a design error in the ANM that does not force credential changes during installation. A remote attacker may exploit thi...
Directory traversal
Directory traversal vulnerability in Cisco Application Networking Manager ANM before 2.0 and Application Control Engine ACE Device Manager before A32.1 allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to "invalid directory permissions."...
Design/Logic Flaw
Unspecified vulnerability in the Java agent in Cisco Application Networking Manager ANM before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service service outage by stopping processes, or obtain sensitive information by reading configuration files...
CVE-2009-0615
CVE-2009-0615 concerns directory traversal in Cisco ANM before 2.0 and ACE Device Manager before A3(2.1). Exploitation by an authenticated remote user could read/modify arbitrary files, potentially exposing host OS data due to invalid directory permissions. Related CVEs cover additional ANM flaws...
CVE-2009-0616
Cisco Application Networking Manager ANM before 2.0 uses default usernames and passwords, which makes it easier for remote attackers to access the application, or cause a denial of service via configuration changes, related to "default user credentials during installation."...