74 matches found
Cisco CDS Internet Streamer Web服务器远程拒绝服务漏洞
Bugtraq ID: 47979 CVE ID:CVE-2011-1649 Cisco Content Delivery System是一款思科公司开发的内容分发系统解决方案。 Cisco Internet Streamer应用程序是Cisco CDS中的一个组件,其WEB服务器存在一个安全漏洞,当解析特定URL时,WEB服务器引擎会崩溃。 未验证攻击者可以利用此漏洞对运行在服务引擎上的WEB服务器进行拒绝服务攻击,设备会继续工作,WEB引擎在攻击之后会重新启动。 Cisco Content Delivery System 2.5.9 Cisco Content Delivery...
Cisco Content Delivery System DoS
Internet Streamer URL processing crash...
Cisco Security Advisory: Cisco Content Delivery System Internet Streamer: Web Server Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Content Delivery System Internet Streamer: Web Server Vulnerability Advisory ID: cisco-sa-20110525-spcdn Revision 1.0 For Public Release 2011 May 25 1600 UTC GMT...
Cisco Content Delivery System Internet Streamer: Web Server Vulnerability
...
CVE-2010-1577
The CVE-2010-1577 vulnerability affects Cisco Content Delivery System CDS Internet Streamer (Cisco CDS) Web Server in CDS 2.2.x, 2.3.x, 2.4.x, and 2.5.x prior to 2.5.7. It is a directory traversal flaw that allows an unauthenticated, remote attacker to read arbitrary files via a specially crafted...
Cisco Plugs Code Execution Hole in CDS Internet Streamer
Cisco has shipped a critical bulletin to warn about a serious security hole in the Cisco Internet Streamer application, which is part of the Cisco Content Delivery System. In an advisory, Cisco warned that exploitation of this vulnerability may allow a remote, unauthenticated attacker to obtain...
CVE-2009-2915
SQL injection vulnerability in 2flygift.php in 2FLY Gift Delivery System 6.0 allows remote attackers to execute arbitrary SQL commands via the gameid parameter in a content action...
Sql injection
SQL injection vulnerability in 2flygift.php in 2FLY Gift Delivery System 6.0 allows remote attackers to execute arbitrary SQL commands via the gameid parameter in a content action...
CVE-2009-2915
The CVE-2009-2915 entry concerns the 2FLY Gift Delivery System 6.0. The vulnerability is an SQL injection in the 2fly_gift.php content action, exploitable via the gameid parameter, allowing remote attackers to execute arbitrary SQL commands. Affected component: 2FLY Gift Delivery System 6.0; vuln...
CVE-2009-2915
SQL injection vulnerability in 2flygift.php in 2FLY Gift Delivery System 6.0 allows remote attackers to execute arbitrary SQL commands via the gameid parameter in a content action...
Directory traversal
Directory traversal vulnerability in PG Problem Editor module PGProblemEditor.pm in WeBWorK Online Homework Delivery System 2.2.0 and earlier allows remote attackers to read and write files outside of the templates directory...
CVE-2006-2839
Directory traversal vulnerability in PG Problem Editor module PGProblemEditor.pm in WeBWorK Online Homework Delivery System 2.2.0 and earlier allows remote attackers to read and write files outside of the templates directory...
CVE-2006-2839
CVE-2006-2839 affects WeBWorK Online Homework Delivery System (2.2.0 and earlier) via the PGProblemEditor.pm module. The vulnerability is a directory traversal that allows remote attackers to read and write files outside the templates directory. Exploitation details, affected versions, and precis...
CVE-2006-2839
Directory traversal vulnerability in PG Problem Editor module PGProblemEditor.pm in WeBWorK Online Homework Delivery System 2.2.0 and earlier allows remote attackers to read and write files outside of the templates directory...