Lucene search
K

982 matches found

Cvelist
Cvelist
added 2006/08/29 12:0 a.m.20 views

CVE-2006-4430

The Cisco Network Admission Control NAC 3.6.4.1 and earlier allows remote attackers to prevent installation of the Cisco Clean Access CCA Agent and bypass local and remote protection mechanisms by modifying 1 the HTTP User-Agent header or 2 the behavior of the TCP/IP stack. NOTE: the vendor has...

6.9AI score0.0191EPSS
Exploits0References8
NVD
NVD
added 2005/12/31 5:0 a.m.14 views

CVE-2005-4825

Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service disk consumption, or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332...

5.7CVSS7AI score0.00609EPSS
Exploits0References3
securityvulns
securityvulns
added 2005/12/22 12:0 a.m.25 views

Multiple Cisco Clean Access network admission control appliance vulnerabilities

It's possible to upload files to server without authentication...

3.3AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2005/12/22 12:0 a.m.29 views

[SA18103] Cisco Clean Access Manager Obsolete JSP Files Vulnerability

TITLE: Cisco Clean Access Manager Obsolete JSP Files Vulnerability SECUNIA ADVISORY ID: SA18103 VERIFY ADVISORY: http://secunia.com/advisories/18103/ CRITICAL: Less critical IMPACT: DoS WHERE: From local network SOFTWARE: Cisco Clean Access CCA 3.x http://secunia.com/product/5561/ DESCRIPTION: Al...

0.3AI score
Exploits0
CVE
CVE
added 2005/12/17 11:0 a.m.49 views

CVE-2005-4332

Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager is affected by CVE-2005-4332. The issue allows remote attackers to bypass authentication and cause a denial of service or upload files via direct requests to obsolete JSP files, specifically admin/uploadclient.jsp, apply_firmware_ac...

9.4CVSS7.1AI score0.03773EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2005/12/17 11:0 a.m.21 views

CVE-2005-4332

Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service or upload files via direct requests to obsolete JSP files including 1 admin/uploadclient.jsp, 2 applyfirmwareaction.jsp, and 3 file.jsp...

6.9AI score0.03773EPSS
Exploits0References12
securityvulns
securityvulns
added 2005/12/17 12:0 a.m.22 views

DoS in Cisco Clean Access

Date of release: 16/12/2005 Software: Cisco Clean Access/Perfigo CleanMachines http://www.cisco.com/en/US/products/ps6128/index.html Affected versions: Tested on 3.5.5, assumed all =current. Risk: Medium/High Discovered by: Alex Lanstein Background -------- Cisco Clean Access is an easily deploye...

0.1AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.103 views

alya.cgi

alya.cgi is a cgi backdoor distributed with multiple rootkits. SPDX-FileCopyrightText: 2002 Jason Lidow Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3AI score
Exploits0
NVD
NVD
added 2005/08/23 4:0 a.m.13 views

CVE-2005-2631

Cisco Clean Access CCA 3.3.0 to 3.3.9, 3.4.0 to 3.4.5, and 3.5.0 to 3.5.3 does not properly authenticate users when invoking API methods, which could allow remote attackers to bypass security checks, change the assigned role of a user, or disconnect users...

7.5CVSS6.8AI score0.01585EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/08/20 4:0 a.m.16 views

CVE-2005-2631

Cisco Clean Access CCA 3.3.0 to 3.3.9, 3.4.0 to 3.4.5, and 3.5.0 to 3.5.3 does not properly authenticate users when invoking API methods, which could allow remote attackers to bypass security checks, change the assigned role of a user, or disconnect users...

6.7AI score0.01585EPSS
Exploits0References4
CVE
CVE
added 2005/08/20 4:0 a.m.40 views

CVE-2005-2631

Concretely, CVE-2005-2631 affects Cisco Clean Access (CCA) versions 3.3.0–3.3.9, 3.4.0–3.4.5, and 3.5.0–3.5.3. The root cause is improper authentication when invoking API methods, potentially allowing remote attackers to bypass security checks, change a user’s assigned role, or disconnect users. ...

7.5CVSS6.8AI score0.01585EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2005/08/19 12:0 a.m.38 views

Cisco Clean Access Agent (Perfigo) bypass

Description: Cisco Clean Access is an easily deployed software solution that can automatically detect, isolate, and clean infected or vulnerable devices that attempt to access your network. It identifies whether networked devices such as laptops, personal digital assistants, even game consoles ar...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2005/08/19 12:0 a.m.30 views

Unauthorized Cisco Clean Access virus isolation solution API access

No description provided...

9.4CVSS3.2AI score0.03773EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2005/08/17 4:0 p.m.87 views

Cisco Clean Access Unauthenticated API Access

...

7.5CVSS3.2AI score0.01585EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2005/08/17 12:0 a.m.92 views

[Full-disclosure] Cisco Security Advisory: Cisco Clean Access Unauthenticated API Access

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Clean Access Unauthenticated API Access Revision 1.0 For Public Release 2005 August 17 1600 UTC GMT +------------------------------------------------------------------------------ Contents ======== Summary Affected...

7.2AI score
Exploits0
Debian CVE
Debian CVE
added 2005/07/19 4:0 a.m.22 views

CVE-2004-2283

Removed by vendor...

5CVSS7AI score0.01435EPSS
Exploits0
NVD
NVD
added 2004/12/31 5:0 a.m.18 views

CVE-2004-2283

Unknown vulnerability in DansGuardian before 2.6.1-13 allows remote attackers to bypass URL filters via a crafted request that causes a page to be added to the clean page cache...

5CVSS6.5AI score0.01435EPSS
Exploits0References2
securityvulns
securityvulns
added 2001/05/26 12:0 a.m.50 views

Дырка в clean-tmps в FreeBSD

Можно удалить любые файлы в корневом каталоге...

0.3AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2001/05/26 12:0 a.m.27 views

4.3 Security: local DoS via clean-tmps

Tested in 4.3-RELEASE only: If /etc/periodic/daily/clean-tmps is enabled, then it's possible for any local user to trick it into calling unlink or rmdir on anything in the root directory. The problem is that "find -delete" can be made to do chdir".." multiple times followed by unlink and/or rmdir...

Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.17 views

Windows Internet Explorer 9 for Windows Server 2008

Windows Internet Explorer 9 delivers web sites and applications that look and perform like native PC applications through the power of Windows. Fast: Internet Explorer 9 is all-around fast. Designed to take full advantage of your PC’s hardware through Windows, Internet Explorer 9 delivers...

1.6AI score
Exploits0
Rows per page
Query Builder