CVE-2007-5539

Cisco UC/ICM suite components (ICME, ICMH, UCCE, UCCH, SUCCE) version 7.1(5) contain an unspecified vulnerability that allows remote authenticated users to gain privileges, read reports, or alter SUCCE configuration via certain web interfaces. The exact root cause, affected subcomponents, and exp...

openSUSE 10 Security Update : hplip (hplip-4516)

The deamon 'hpssd' could be exploited by users to execute arbitrary commands as root. hpssd only runs on systems that have HP all-in-one devices configured. In the default configuration the problem is not remotely exploitable as hpssd only listens on local interfaces CVE-2007-5208. %NASLMINLEVEL...

CVE-2007-5134

Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel EOBC internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended...

Moderate: Red Hat Security Advisory: xorg-x11 security update

Updated X.org packages that correct a flaw in X.Org's composite extension are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. X.org is an open source implementation of the X Window System. It provid...

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service source: https://www.securityfocus.com/bid/25352/info Cisco IOS is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain CLI commands. To issue commands that trigger this vulnerability,...

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service

source: https://www.securityfocus.com/bid/25352/info Cisco IOS is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain CLI commands. To issue commands that trigger this vulnerability, attackers must be able to successfully authenticate to...

[SECURITY] Fedora Core 6 Update: cups-1.2.12-4.fc6

The Common UNIX Printing System provides a portable printing layer for UNIX=C2=AE operating systems. It has been developed by Easy Software Produc ts to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces...

Cisco IOS Next Hop Resolution Protocol (NHRP) - Denial of Service

// / / / nhrp-dos - Copyright by Martin Kluge, / / / / Feel free to modify this code as you like, as long as you include the / / above copyright statement. / / / / Please use this code only to check your OWN cisco routers. / / / / Cisco bug ID: CSCin95836 / / / / The Next-Hop-Resolution Protocol...

FreeBSD : FreeBSD -- Buffer overflow in tcpdump(1) (2dc764fa-40c0-11dc-aeac-02e0185f8d72)

An un-checked return value in the BGP dissector code can result in an integer overflow. This value is used in subsequent buffer management operations, resulting in a stack based buffer overflow under certain circumstances. Impact : By crafting malicious BGP packets, an attacker could exploit this...

Classic: Web2. 0 client components vulnerability scanning one-vulnerability warning-the black bar safety net

A, Web2. 0 is the several technology of integrated application of the results, these techniques are: AJAX（Asynchronous JavaScript and XML,Flash, JSONJavaScript Object Notation,SOAP Simple Object Access Protocol and REST, Representational State Transfer, etc. These techniques coupled with...

Code injection

Unspecified vulnerability in Sun Solaris 10 before 20070614, when IPv6 interfaces are present but not configured for IPsec, allows remote attackers to cause a denial of service system crash via certain network traffic...

MS Windows Vista forged ARP packet Network Stack DoS Exploit

No description provided by source. !/usr/bin/env python :: Kristian Hermansen :: Date: 20070514 Reference: CVE-2007-1531 Description: Microsoft Windows Vista SP0 dumps interfaces when it receives this ARP packet. This DoS is useful for an internet cafe, wireless venue, or legitimate local attack...

Enumerate IPv6 Interfaces via SSH

Nessus was able to enumerate the network interfaces configured with IPv6 addresses by connecting to the remote host via SSH using the supplied credentials. TRUSTED...

Enumerate IPv4 Interfaces via SSH

Nessus was able to enumerate the network interfaces configured with IPv4 addresses by connecting to the remote host via SSH using the supplied credentials. TRUSTED...

Code injection

Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allows connections from external interfaces via port 8009, which exposes it to attacks from outside parties...

CVE-2007-1491

Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allows connections from external interfaces via port 8009, which exposes it to attacks from outside parties...

PT-2007-2464 · Red Hat · Jboss

Name of the Vulnerable Software and Affected Versions: JBoss affected versions not specified Description: The default configuration of JBoss does not restrict access to the console and web management interfaces, allowing remote attackers to bypass authentication and gain administrative access...

CVE-2007-0932

The 1 Aruba Mobility Controllers 200, 600, 2400, and 6000 and 2 Alcatel-Lucent OmniAccess Wireless 43xx and 6000 do not properly implement authentication and privilege assignment for the guest account, which allows remote attackers to access administrative interfaces or the WLAN...

CVE-2007-0931

The CVE describes a heap-based buffer overflow in the management interfaces of Aruba Mobility Controllers (200, 800, 2400, 6000) and Alcatel-Lucent OmniAccess Wireless (43xx, 6000). The underlying flaw allows remote attackers to trigger a denial of service (process crash) and potentially execute ...

CVE-2007-0932

The 1 Aruba Mobility Controllers 200, 600, 2400, and 6000 and 2 Alcatel-Lucent OmniAccess Wireless 43xx and 6000 do not properly implement authentication and privilege assignment for the guest account, which allows remote attackers to access administrative interfaces or the WLAN...