18 matches found
EUVD-2016-7353
Malware in sbrugna...
CVE-2016-6430
A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration System IPICS could allow an authenticated, local attacker to elevate the privilege level associated with their session. More Information: CSCva38636. Known Affected Releases: 4.101. Known Fixed...
Design/Logic Flaw
A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration System IPICS could allow an authenticated, local attacker to elevate the privilege level associated with their session. More Information: CSCva38636. Known Affected Releases: 4.101. Known Fixed...
CVE-2016-6429
A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System IPICS could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. More Information: CSCva47092. Known Affected Releases: 4.101...
Cross site scripting
A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System IPICS could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. More Information: CSCva47092. Known Affected Releases: 4.101...
CVE-2016-6429
A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System IPICS could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. More Information: CSCva47092. Known Affected Releases: 4.101...
CVE-2016-6430
CVE-2016-6430 affects Cisco IP Interoperability and Collaboration System (IPICS) CLI. The vulnerability arises from insufficient input validation in the command-line interface, allowing an authenticated, local attacker to elevate session privileges. Known affected release: IPICS 4.10(1); fixed in...
CVE-2016-6430
A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration System IPICS could allow an authenticated, local attacker to elevate the privilege level associated with their session. More Information: CSCva38636. Known Affected Releases: 4.101. Known Fixed...
CVE-2016-6429
A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System IPICS could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. More Information: CSCva47092. Known Affected Releases: 4.101...
CVE-2016-6429
CVE-2016-6429 affects Cisco IP Interoperability and Collaboration System (IPICS). The issue is a cross-site scripting (XSS) vulnerability in the web framework, arising from insufficient input validation of parameters passed to the web server. An unauthenticated, remote attacker could exploit this...
CVE-2016-6397
A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Collaboration System IPICS Universal Media Services UMS could allow an unauthenticated, remote attacker to modify configuration parameters of the UMS and cause the system to become unavailable. Affect...
Design/Logic Flaw
A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Collaboration System IPICS Universal Media Services UMS could allow an unauthenticated, remote attacker to modify configuration parameters of the UMS and cause the system to become unavailable. Affect...
CVE-2016-6397
Cisco IPICS Universal Media Services (UMS) vulnerable via its interdevice communications interface. Affects Cisco IPICS releases 4.8(1)–4.10(1). The issue allows an unauthenticated, remote attacker to modify UMS configuration parameters and render the system unavailable. Root cause described as i...
CVE-2016-6397
A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Collaboration System IPICS Universal Media Services UMS could allow an unauthenticated, remote attacker to modify configuration parameters of the UMS and cause the system to become unavailable. Affect...
Cisco Patches Critical Vulnerability in Facility Events Response System
Cisco Systems issued a security bulletin Wednesday for a critical vulnerability found in its IP Interoperability and Collaboration System IPICS. The feature is a key part of a mechanism used by Cisco to facilitate emergency responses for “facility events.” The vulnerability CVE-2016-6397, accordi...
Cisco IP Interoperability and Collaboration System Cross-Site Scripting Vulnerability
A vulnerability in the web framework code of the Cisco IP Interoperability and Collaboration System IPICS could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient input validation of some parameters passed to the web...
Cisco IP Interoperability and Collaboration System Universal Media Services Unauthorized Access Vulnerability
A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Collaboration System IPICS Universal Media Services UMS could allow an unauthenticated, remote attacker to modify configuration parameters of the UMS and cause the system to become unavailable. The...
Cisco IPICS Multiple Vulnerabilities in Network Time Protocol Daemon (cisco-sa-20160127-ntpd)
Multiple Cisco products incorporate a version of the Network Time Protocol daemon ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service DoS condition or modify the time being advertised...