30 matches found
EUVD-2019-10435
Malware in sbrugna...
EUVD-2004-0649
Malware in sbrugna...
EUVD-2010-0673
Malware in sbrugna...
EUVD-2010-0672
Malware in sbrugna...
The vulnerability in the web interface of the software for monitoring social networks on the Cisco Customer Collaboration Platform (formerly Cisco SocialMiner) allows a perpetrator to disclose protected information.
The vulnerability of the web interface of the software for monitoring social networks on the Cisco Customer Collaboration Platform formerly Cisco SocialMiner is related to errors in information processing. Exploiting this vulnerability can allow a malicious actor to disclose protected information...
Cisco and Wiz Help Customers Modernize Cybersecurity
Enhanced collaboration deepens cloud security capabilities, democratizes security across cloud businesses...
Security Bulletin: Multiple vulnerabilities in Apache Commons Collections affect IBM InfoSphere Information Server
Summary Multiple vulnerabilities in Apache Commons Collections used by IBM InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2015-4852 DESCRIPTION: The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers t...
Security Bulletin: IBM Jazz for Service Management (JazzSM) is affected with multiple vulnerabilities (CVE-2015-4852, CVE-2015-6420, CVE-2017-15708)
Summary Jazz for Service Management is affected with multiple vulnerabilities CVE-2015-4852, CVE-2015-6420, CVE-2017-15708 Vulnerability Details CVEID: CVE-2017-15708 DESCRIPTION: In Apache Synapse, by default no authentication is required for Java Remote Method Invocation RMI. So Apache Synapse...
Cisco Emergency Responder Denial of Service (cisco-sa-20171115-vos)
According to its self-reported version, the Cisco Emergency Responder CER is affected by an unauthorized access vulnerability. The vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated,...
SQL Injection Vulnerability in Cisco Collaboration OA Office Software
Cisco collaborative OA office software system is a collaborative OA office software developed by Guangdong Cisco Technology Co. SQL injection vulnerability exists in Cisco Collaborative OA Office Software, which can be exploited by attackers to obtain database information...
The vulnerability of the software update service for Cisco WebEx Meetings Desktop App and WebEx Productivity Tools for Windows operating systems allows a malicious individual to execute arbitrary commands.
The vulnerability of the software update service for Cisco Webex Meetings Desktop App and Webex Productivity Tools for Windows operating systems is related to the improper handling of special elements used in the operating system’s command line. Exploiting this vulnerability can allow an attacker...
CVE-2017-6779
Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration products that could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service DoS condition. The vulnerability occu...
CVE-2017-6779
CVE-2017-6779 affects multiple Cisco VOS-based products (Emergency Responder, Finesse, UCM family, Unity Connection, UIC, SME, UCCx, MediaSense, Prime products, and related). Root cause: system log file has no maximum size limit, enabling an unauthenticated, remote attacker to cause high disk uti...
PT-2017-3275 · Cisco · Cisco Voice Operating System
Name of the Vulnerable Software and Affected Versions: Cisco collaboration products based on the Cisco Voice Operating System software platform affected versions not specified Description: A vulnerability in the upgrade mechanism of Cisco collaboration products could allow an unauthenticated,...
Cisco Collaboration Server 5 XSS, Source Code Disclosure
No description provided by source. Cisco Collaboration Server 5 XSS, Source Code Disclosure Discovered by: s4squatch of SecureState R&D Team www.securestate.com Discovered: 08/26/2008 Note: End of Engineering --...
Cisco Collaboration Server Source Code Disclosure Vulnerabilities
Cisco Collaboration Server is prone to multiple vulnerabilities that may allow remote attackers to obtain sourcecode, which may aid them in further attacks. Cisco Collaboration Server 5 is vulnerable; other versions may be affected as well. NOTE: The vendor has discontinued this product. OpenVAS...
Cisco Collaboration Server 'LoginPage.jhtml' Cross Site Scripting Vulnerability
Cisco Collaboration Server is prone to a cross-site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow t...
Cisco Collaboration Server 5 Source Code Disclosure Vulnerabilities - Active Check
Cisco Collaboration Server is prone to multiple vulnerabilities that may allow remote attackers to obtain sourcecode, which may aid them in further attacks. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
CVE-2010-0642
Cisco Collaboration Server CCS 5 allows remote attackers to read the source code of JHTML files via URL encoded characters in the filename extension, as demonstrated by 1 changing .jhtml to %2Ejhtml, 2 changing .jhtml to .jhtm%6C, 3 appending %00 after .jhtml, and 4 appending %c0%80 after .jhtml,...
CVE-2010-0641
Cross-site scripting XSS vulnerability in webline/html/admin/wcs/LoginPage.jhtml in Cisco Collaboration Server CCS 5 allows remote attackers to inject arbitrary web script or HTML via the dest parameter...