Lucene search
+L

130 matches found

CVE
CVE
added 2008/05/29 4:0 p.m.45 views

CVE-2008-2054

CVE-2008-2054 affects CiscoWorks Common Services versions 3.0.3 through 3.1.1. The Cisco advisory and accompanying sources describe a remote arbitrary-code execution vulnerability exploitable by an attacker from the network, leading to code execution on the user’s client machine. Cisco’s document...

9.3CVSS7.5AI score0.03909EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2008/05/29 4:0 p.m.24 views

CVE-2008-2054

Unspecified vulnerability in Cisco CiscoWorks Common Services 3.0.3 through 3.1.1 allows remote attackers to execute arbitrary code on a client machine via unknown vectors...

7.5AI score0.03909EPSS
Exploits0References6
securityvulns
securityvulns
added 2008/05/29 12:0 a.m.52 views

Cisco multiple applications code execution

CiscoWorks Common Services code execution...

9.3CVSS2.9AI score0.03909EPSS
Exploits0References1Affected Software6
securityvulns
securityvulns
added 2008/05/29 12:0 a.m.50 views

Cisco Security Advisory: CiscoWorks Common Services Arbitrary Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: CiscoWorks Common Services Arbitrary Code Execution Vulnerability Advisory ID: cisco-sa-20080528-cw Revision 1.0 For Public Release 2008 May 28 1600 UTC GMT +--------------------------------------------------------------------...

9.3CVSS1.3AI score0.03909EPSS
Exploits0
Cisco
Cisco
added 2008/05/28 4:0 p.m.56 views

CiscoWorks Common Services Arbitrary Code Execution Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

9.3CVSS6.2AI score0.03909EPSS
Exploits0References1
seebug.org
seebug.org
added 2008/03/17 12:0 a.m.26 views

CiscoWorks Internetwork Performance Monitor远程命令执行漏洞

BUGTRAQ ID: 28249 CVECAN ID: CVE-2008-1157 CiscoWorks IPM是可测量网络响应时间和可用性的故障检测应用。 Solaris和Windows平台上的的IPM 2.6版中的一个进程可导致将命令shell自动绑定到随机选择的TCP端口上,未经认证的远程用户可以连接到开放的端口上并在Solaris系统上以casuser权限或在Windows系统上以SYSTEM权限执行任意命令。 Cisco Internetwork Performance Monitor 2.6 厂商补丁: Cisco -----...

10CVSS6.7AI score0.20666EPSS
Exploits2
securityvulns
securityvulns
added 2008/03/15 12:0 a.m.57 views

Cisco CiscoWorks Internetwork Performance Monitor code execution

It's possible to execute commands without authentication...

10CVSS3.5AI score0.20666EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
added 2008/03/15 12:0 a.m.64 views

Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability Advisory ID: cisco-sa-20080313-ipm Revision 1.0 For Public Release 2008 March 13 Summary ======= CiscoWorks Internetwork Performance Monitor IP...

10CVSS0.7AI score0.20666EPSS
Exploits2
Prion
Prion
added 2008/03/14 8:44 p.m.15 views

Command injection

Cisco CiscoWorks Internetwork Performance Monitor IPM 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitrary commands...

10CVSS8.1AI score0.20666EPSS
Exploits2References6Affected Software1
d2
d2
added 2008/03/14 8:44 p.m.63 views

DSquare Exploit Pack: D2SEC_CISCOIPM

Name| d2secciscoipm ---|--- CVE| CVE-2008-1157 Exploit Pack| D2ExploitPack Description| Cisco CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability Notes|...

10CVSS3.1AI score0.20666EPSS
Exploits2
NVD
NVD
added 2008/03/14 8:44 p.m.41 views

CVE-2008-1157

Cisco CiscoWorks Internetwork Performance Monitor IPM 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitrary commands...

10CVSS7.5AI score0.20666EPSS
Exploits2References6
Cvelist
Cvelist
added 2008/03/14 8:0 p.m.34 views

CVE-2008-1157

Cisco CiscoWorks Internetwork Performance Monitor IPM 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitrary commands...

7.5AI score0.20666EPSS
Exploits2References6
Cisco
Cisco
added 2008/03/13 6:0 p.m.19 views

CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability

...

3.4AI score
Exploits0References1
Prion
Prion
added 2007/12/15 1:46 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the login page in Cisco CiscoWorks Server CS, possibly 2.6 and earlier, when using CiscoWorks Common Services 3.0.x and 3.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.01569EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2007/12/15 1:46 a.m.19 views

CVE-2007-5582

Cross-site scripting XSS vulnerability in the login page in Cisco CiscoWorks Server CS, possibly 2.6 and earlier, when using CiscoWorks Common Services 3.0.x and 3.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.8AI score0.01569EPSS
Exploits0References10
CVE
CVE
added 2007/12/15 1:0 a.m.45 views

CVE-2007-5582

CiscoWorks Server/XSS in the Common Services login page (CS) affects CS 3.0.x and 3.1, possibly earlier 2.6, allowing remote injection of arbitrary script or HTML via unspecified vectors. The vulnerability is documented as a cross-site scripting issue in the login page; the provided sources do no...

4.3CVSS5.8AI score0.01569EPSS
Exploits0References10Affected Software1
securityvulns
securityvulns
added 2007/12/06 12:0 a.m.27 views

Advisory: Cross Site Scripting in CiscoWorks

December 5th, 2007 ======= Summary ======= Name: Cross Site Scripting in CiscoWorks Release Date: 05 December 2007 Reference: LSD001-2007 Discover: Dave Lewis Vendor: Cisco Systems Affected: CiscoWorks version 2.6 as tested All prior builds are affected Risk: Medium Status: Published Reference:...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2007/12/06 12:0 a.m.25 views

CiscoWorks crossite scripting

No description provided...

2.5AI score
Exploits0References1Affected Software1
NVD
NVD
added 2007/10/12 1:17 a.m.27 views

CVE-2007-5382

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine WLSE 4.1.91.0 and earlier to Cisco Wireless Control System WCS creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges...

10CVSS7AI score0.02566EPSS
Exploits0References6
Prion
Prion
added 2007/10/12 1:17 a.m.16 views

Default credentials

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine WLSE 4.1.91.0 and earlier to Cisco Wireless Control System WCS creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges...

10CVSS7.5AI score0.02566EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder