EUVD-2014-2143

Malware in sbrugna...

CVE-2020-28044

An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161.8859R can boot it in management mode, enable the XCB service, and then list, read, create, and overwrite files with MAINAPP permissions...

Code injection

An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161.8859R can boot it in management mode, enable the XCB service, and then list, read, create, and overwrite files with MAINAPP permissions...

CVE-2020-28044

The CVE-2020-28044 entry applies to a PAX Point Of Sale device running ProlinOS up to 2.4.161.8859R. With physical access, an attacker can boot the device into management mode, enable the XCB service, and gain MAINAPP-privileged access to list, read, create, and overwrite files. The description d...

Cisco Intrusion Prevention System MainApp SSL/TLS DoS (cisco-sa-20150311-ips)

According to its self-reported version, the Cisco Intrusion Prevention System software running on the remote host is affected by a denial of service vulnerability within the SSL/TLS subsystem due to a race condition when handling multiple HTTPS requests on the management interface. A remote...

Cisco Intrusion Prevention System MainApp Denial of Service Vulnerability

A vulnerability in the web framework of Cisco Intrusion Prevention System IPS Software could allow an authenticated, remote attacker to cause MainApp to hang intermittently because the authentication manager process creates a denial of service DoS condition. The vulnerability is due to improper...

Cisco IPS MainApp SNMP Denial of Service Vulnerability

A vulnerability in the SNMP code of Cisco Intrusion Prevention System IPS Software could allow an unauthenticated, remote attacker to cause the MainApp process to become unresponsive. This creates a denial of service DoS condition because the Cisco IPS sensor is not able to execute several critic...

Cisco Intrusion Prevention System SNMP报文拒绝服务漏洞

Bugtraq ID:65864 CVE ID:CVE-2014-2103 Cisco Intrusion Prevention System IPS是一款内联的报文检测分析功能，可用于检查大量的网络攻击。 Cisco Intrusion Prevention System IPS不正确处理SNMP报文信息，允许远程攻击者利用漏洞提交特制的SNMP报文，可使MainApp应用程序停止响应，造成拒绝服务攻击。 0 Cisco Intrusion Prevention System IPS 目前没有详细解决方案提供：...

CVE-2014-2103

Cisco Intrusion Prevention System IPS Software allows remote attackers to cause a denial of service MainApp process outage via malformed SNMP packets, aka Bug IDs CSCum52355 and CSCul49309...

Multiple Vulnerabilities in Cisco Intrusion Prevention System Software (cisco-sa-20140219-ips)

According to its self-reported version, the version of the Cisco Intrusion Prevention System software running on the remote is affected by the following denial of service vulnerabilities : - The Analysis Engine can become unresponsive due to improper handling of fragmented packets processed throu...

Hardcoded credentials

The control-plane access-list implementation in Cisco IPS Software before 7.18p2E4 and 7.2 before 7.22E4 allows remote attackers to cause a denial of service MainApp process outage via crafted packets to TCP port 7000, aka Bug ID CSCui67394...

CVE-2014-0719

The control-plane access-list implementation in Cisco IPS Software before 7.18p2E4 and 7.2 before 7.22E4 allows remote attackers to cause a denial of service MainApp process outage via crafted packets to TCP port 7000, aka Bug ID CSCui67394...

Cisco IPS Software Control-Plane MainApp拒绝服务漏洞

Bugtraq ID:65667 CVE ID:CVE-2014-0719 Cisco IPS Software是一款思科开发的入侵防御系统。 Cisco IPS Software上的Control-plane访问列表实现中存在漏洞，允许未验证远程攻击者使MainApp进程变得不稳定。 漏洞是由于不正确处理发送给受影响系统的管理IP地址的畸形TCP报文，向TCP 7000端口发送特制报文可使MainApp进程变得不稳定。 0 Cisco ASA 5505 Advanced Inspection and Prevention Security Services Card AIP SSC...

Multiple Vulnerabilities in Cisco IPS Software

Cisco Intrusion Prevention System IPS Software is affected by the following vulnerabilities: Cisco IPS Analysis Engine Denial of Service Vulnerability Cisco IPS Control-Plane MainApp Denial of Service Vulnerability Cisco IPS Jumbo Frame Denial of Service Vulnerability The Cisco IPS Analysis Engin...

CVE-2013-1243

The IP stack in Cisco Intrusion Prevention System IPS Software in ASA 5500-X IPS-SSP software and hardware modules before 7.15E4, IPS 4500 sensors before 7.16E4, and IPS 4300 sensors before 7.15E4 allows remote attackers to cause a denial of service MainApp process hang via malformed IPv4 packets...

Code injection

The sensor in Cisco Intrusion Prevention System IPS 7.0 and 7.1 allows remote attackers to cause a denial of service file-handle exhaustion and mainApp hang by making authentication attempts that exceed the configured limit, aka Bug ID CSCto51204...

CVE-2011-4022

The sensor in Cisco Intrusion Prevention System IPS 7.0 and 7.1 allows remote attackers to cause a denial of service file-handle exhaustion and mainApp hang by making authentication attempts that exceed the configured limit, aka Bug ID CSCto51204...