Lucene search
K

72 matches found

Cvelist
Cvelist
added 2017/07/10 8:0 p.m.22 views

CVE-2017-6731

A vulnerability in Multicast Source Discovery Protocol MSDP ingress packet processing for Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the MSDP session to be unexpectedly reset, causing a short denial of service DoS condition. The MSDP session will restart within...

7.5AI score0.01589EPSS
Exploits0References2
CVE
CVE
added 2017/07/10 8:0 p.m.58 views

CVE-2017-6731

CVE-2017-6731 affects Cisco IOS XR Software in the Multicast Source Discovery Protocol (MSDP) ingress packet processing. An unauthenticated, remote attacker can trigger a short DoS by sending malformed MSDP packets to an established MSDP session, causing the session to reset and restart within se...

7.5CVSS7.4AI score0.01589EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2017/07/06 12:0 a.m.19 views

Cisco IOS XR Software Multicast Source Discovery Protocol Session Denial of Service Vulnerability (cisco-sa-20170705-iosxr)

A vulnerability in Multicast Source Discovery Protocol MSDP ingress packet processing for Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the MSDP session to be unexpectedly reset, causing a short denial of service DoS condition. The MSDP session will restart within...

7.5CVSS7.5AI score0.01589EPSS
Exploits0References1
Cisco
Cisco
added 2017/07/05 4:0 p.m.35 views

Cisco IOS XR Software Multicast Source Discovery Protocol Session Denial of Service Vulnerability

A vulnerability in Multicast Source Discovery Protocol MSDP ingress packet processing for Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the MSDP session to be unexpectedly reset, causing a short denial of service DoS condition. The MSDP session will restart within...

5.8CVSS7.6AI score0.01589EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/10/07 12:0 a.m.35 views

Cisco IOS XE Multicast Routing Multiple DoS (cisco-sa-20160928-msdp)

According to its self-reported version number and configuration, the remote Cisco IOS XE device is affected by multiple denial of service vulnerabilities : - A denial of service vulnerability exists due to improper validation of packets encapsulated in a PIM register message. An unauthenticated,...

7.8CVSS7.5AI score0.04896EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/10/07 12:0 a.m.34 views

Cisco IOS Multicast Routing Multiple DoS (cisco-sa-20160928-msdp)

According to its self-reported version number and configuration, the remote Cisco IOS device is affected by multiple denial of service vulnerabilities : - A denial of service vulnerability exists due to improper validation of packets encapsulated in a PIM register message. An unauthenticated,...

7.8CVSS7.5AI score0.04896EPSS
Exploits0References4
NVD
NVD
added 2016/10/05 5:59 p.m.17 views

CVE-2016-6392

Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.1 through 3.9 allow remote attackers to cause a denial of service device restart via a crafted IPv4 Multicast Source Discovery Protocol MSDP Source-Active SA message, aka Bug ID CSCud36767...

7.8CVSS7.3AI score0.02588EPSS
Exploits0References3
CNVD
CNVD
added 2016/09/29 12:0 a.m.5 views

Cisco IOS/IOS multicast subsystem denial of service vulnerability (CNVD-2016-08398)

Cisco IOS is the interconnected Internet operating system used on most Cisco Systems routers and network switches. A denial of service vulnerability exists in Cisco IOS/IOS XE Software in the multicast subsystem. Exploitation of this vulnerability by an unauthenticated, remote attacker could resu...

7.8CVSS6.9AI score0.04896EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/09/29 12:0 a.m.29 views

Cisco IOS Software Multicast Routing Denial of Service Vulnerabilities (cisco-sa-20160928-msdp)

Multiple vulnerabilities in the multicast subsystem of Cisco IOS Software could allow an unauthenticated, remote attacker to create a denial of service DoS condition. The issues are in IPv4 Multicast Source Discovery Protocol MSDP and IPv6 Protocol Independent Multicast PIM. SPDX-FileCopyrightTex...

7.8CVSS7.5AI score0.04896EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/09/29 12:0 a.m.24 views

CiscoIOS XE Software Multicast Routing Denial of Service Vulnerabilities

Multiple vulnerabilities in the multicast subsystem of Cisco IOS XE Software could allow an unauthenticated, remote attacker to create a denial of service DoS condition. The issues are in IPv4 Multicast Source Discovery Protocol MSDP and IPv6 Protocol Independent Multicast PIM...

7.8CVSS7.7AI score0.04896EPSS
Exploits0References1
Cisco
Cisco
added 2016/09/28 4:0 p.m.67 views

Cisco IOS and IOS XE Software Multicast Routing Denial of Service Vulnerabilities

Multiple vulnerabilities in the multicast subsystem of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to create a denial of service DoS condition. The issues are in IPv4 Multicast Source Discovery Protocol MSDP and IPv6 Protocol Independent Multicast PIM. The first...

7.8CVSS7.7AI score
Exploits0References1
NVD
NVD
added 2015/04/06 3:59 p.m.25 views

CVE-2015-2165

Multiple cross-site scripting XSS vulnerabilities in the Report Viewer in Ericsson Drutt Mobile Service Delivery Platform MSDP 4.x, 5.x, and 6.x allow remote attackers to inject arbitrary web script or HTML via the 1 portal, 2 fromDate, 3 toDate, 4 fromTime, 5 toTime, 6 kword, 7 uname, 8 pname, 9...

4.3CVSS5.8AI score0.0176EPSS
Exploits2References2
Cvelist
Cvelist
added 2015/04/06 3:0 p.m.31 views

CVE-2015-2166

Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform MSDP 4, 5, and 6 allows remote attackers to read arbitrary files via a ..%2f dot dot encoded slash in the default URI...

9.2AI score0.26229EPSS
Exploits5References3
CVE
CVE
added 2015/04/06 3:0 p.m.77 views

CVE-2015-2166

Ericsson Drutt Mobile Service Delivery Platform (MSDP) has a Local File Inclusion vulnerability in the Instance Monitor affecting versions 4–6. The flaw lets remote attackers read arbitrary files via a dot-dot-encoded slash (..%2f) in the default URI, enabling information disclosure. Root cause i...

5CVSS9AI score0.26229EPSS
Exploits5References3Affected Software1
CVE
CVE
added 2015/04/06 3:0 p.m.51 views

CVE-2015-2165

CVE-2015-2165 covers multiple stored/reflected XSS flaws in Ericsson Drutt MSDP Report Viewer (versions 4.x–6.x). The vulnerabilities allow remote attackers to inject arbitrary script/HTML via a large set of parameters across various JSP pages (top-links.jsp, page-summary.jsp, service-summary.jsp...

4.3CVSS5.9AI score0.0176EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2015/04/06 3:0 p.m.52 views

CVE-2015-2167

Summary: CVE-2015-2167 is an open redirect vulnerability in Ericsson Drutt MSDP 3PI Manager (versions 4, 5, and 6). The issue arises from inadequate filtering of the url parameter in jsp/start-3pi-manager.jsp, enabling remote attackers to redirect users to arbitrary sites and potentially facilita...

5.8CVSS6.9AI score0.01203EPSS
Exploits2References2Affected Software1
exploitpack
exploitpack
added 2015/04/02 12:0 a.m.57 views

Ericsson Drutt MSDP (Instance Monitor) - Directory Traversal

Ericsson Drutt MSDP Instance Monitor - Directory Traversal +------------------------------------------------------------------------------------------------------+ + Ericsson Drutt MSDP Instance Monitor - Directory Traversal Vulnerability and Arbitrary File Access +...

5CVSS9.6AI score0.26229EPSS
Exploits5
0day.today
0day.today
added 2015/04/02 12:0 a.m.90 views

Ericsson Drutt MSDP (Instance Monitor) - Directory Traversal Vulnerability

Exploit for php platform in category web applications +------------------------------------------------------------------------------------------------------+ + Ericsson Drutt MSDP Instance Monitor - Directory Traversal Vulnerability and Arbitrary File Access +...

5CVSS9.6AI score0.26229EPSS
Exploits5
Exploit DB
Exploit DB
added 2015/04/02 12:0 a.m.47 views

Ericsson Drutt MSDP (Instance Monitor) - Directory Traversal

+------------------------------------------------------------------------------------------------------+ + Ericsson Drutt MSDP Instance Monitor - Directory Traversal Vulnerability and Arbitrary File Access +...

5CVSS6.6AI score0.26229EPSS
Exploits5
Packet Storm
Packet Storm
added 2015/04/01 12:0 a.m.55 views

Ericsson Drutt MSDP (Report Viewer) Cross Site Scripting

+----------------------------------------------------------------------+ + Ericsson Drutt MSDP Report Viewer - Cross Site Scripting Injection + +----------------------------------------------------------------------+ Affected Product: Ericsson Drutt MSDP Report Viewer Vendor Homepage :...

4.3CVSS0.0176EPSS
Exploits2
Rows per page
Query Builder