CVE-2016-1418

Cisco Aironet Access Point Software 8.2100.0 on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID CSCuy64037...

Cisco Aironet Access Points Command-Line Interpreter Linux Shell Command Injection Vulnerability

A vulnerability in the command-line interpreter of Cisco Aironet 1800, 2800, and 3800 Series Access Points could allow an authenticated, local attacker to inject commands in the Linux shell. The commands could be executed with root-level privileges. The vulnerability is due to improper sanitizati...

Cisco Prime Network Analysis Module and Cisco Prime Virtual Network Analysis Module Local Command Injection Vulnerability

Cisco Prime Network Analysis Module and Cisco Prime Virtual Network Analysis Module are network analysis software used by network administrators to manage and configure the network's usage, operational status, and so on. A local command injection vulnerability exists in the CLI of Cisco Prime...

CVE-2016-1403

CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005...

CVE-2016-1403

CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005...

CVE-2016-1390

Cisco Prime Network Analysis Module NAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 and Prime Virtual Network Analysis Module vNAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 allow local users to obtain root access via crafted CLI input, aka Bug ID CSCuy21892...

Design/Logic Flaw

Cisco Prime Network Analysis Module NAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 and Prime Virtual Network Analysis Module vNAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 allow local users to obtain root access via crafted CLI input, aka Bug ID CSCuy21892...

CVE-2016-1390

Cisco Prime Network Analysis Module NAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 and Prime Virtual Network Analysis Module vNAM before 6.11 patch.6.1-2-final and 6.2.x before 6.21 allow local users to obtain root access via crafted CLI input, aka Bug ID CSCuy21892...

CVE-2016-1390

Cisco Prime Network Analysis Module (NAM) and Cisco Prime Virtual Network Analysis Module (vNAM) are affected by CVE-2016-1390. The issue arises from insufficient sanitization of CLI input, allowing a local, authenticated attacker to obtain root privileges by crafting input that is processed by t...

Cisco ASA Software 8.x/9.x - IKEv1 / IKEv2 Buffer Overflow

!/usr/bin/env python2.7 import socket import sys import struct import string import random import time Spawns a reverse cisco CLI cliShellcode = "\x60\xc7\x02\x90\x67\xb9\x09\x8b\x45\xf8\x8b\x40\x5c\x8b\x40\x04" "\x8b\x40\x08\x8b\x40\x04\x8b\x00\x85\xc0\x74\x3b\x50\x8b\x40\x08"...

Cisco NX-OS Software TACACS+ Command Authorization Vulnerability (Cisco-SA-20150202-CVE-2014-8013)

A vulnerability in the TACACS+ command authorization feature of Cisco NX-OS Software could allow an authenticated, local attacker to cause the system to reset. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Cisco Nexus Operating System Devices Command Line Interface Local Privilege Escalation Vulnerability (Cisco-SA-20150701-CVE-2015-4237)

A vulnerability in the Command Line Interface CLI parser of Cisco Nexus Operating System NX-OS devices could allow an authenticated, local attacker to perform a privilege escalation. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and...

Fedora 22 : openvas-cli-1.4.4-1.fc22 / openvas-gsa-6.0.10-3.fc22 / openvas-libraries-8.0.7-2.fc22 / etc (2016-9851b69dbb)

Bump to latest upstream bugfix releases. Contains Security fix for CVE-2016-1926 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora Update for openvas-cli FEDORA-2016-9851

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 22 Update: openvas-cli-1.4.4-1.fc22

OpenVAS CLI contains the command line tool "omp" which allows to create bat ch processes to drive OpenVAS Manager...

[SECURITY] Fedora 24 Update: i7z-0.27.2-16.20150629gitec09c4f.fc24

i7z is a CLI curses based monitoring tool for Intel Core i7, i5 and i3 processors...

Juniper Networks Junos OS Multiple Privilege Escalation Vulnerabilities (JSA10739)

Junos OS is prone to multiple privilege escalation vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos...

[SECURITY] Fedora 23 Update: openvas-cli-1.4.4-1.fc23

OpenVAS CLI contains the command line tool "omp" which allows to create bat ch processes to drive OpenVAS Manager...

[SECURITY] Fedora 23 Update: i7z-0.27.2-16.20150629gitec09c4f.fc23

i7z is a CLI curses based monitoring tool for Intel Core i7, i5 and i3 processors...

Bumble: AWS S3 Bucket hotornot-images permissions allow for listing and removing files

We do not use amazon AWS but @yaworsk wanted to disclose his report anyway. Why not, we can do. ---- Hi All, Though I'm not 100% sure you own the bucket - and if not, I would appreciate being able to close this myself - I believe you may own the S3 bucket hotornot-images. If so, using the AWS CLI...