EUVD-2009-3918

Malware in sbrugna...

Unsupported Cisco MXP Series Device

The remote host is a Cisco MXP series device. Cisco has discontinued support for all MXP series devices. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. C Tenable Network Security,...

Cisco TelePresence MXP Series Software Multiple Vulnerabilities (cisco-sa-20140430-mxp)

The version of Cisco TelePresence MXP Series software running on the remote host is affected by one or more of the following issues : - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending...

CVE-2014-2156

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service device reload via crafted SIP packets, aka Bug ID CSCty45739...

CVE-2014-2158

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service device reload via crafted SIP packets, aka Bug ID CSCty45720...

CVE-2014-2157

CVE-2014-2157 affects Cisco TelePresence System MXP Series Software prior to F9.3.1. The vulnerability arises from a flaw in the SIP implementation that allows remote attackers to trigger a device reload (DoS) by sending crafted SIP packets, as identified by Bug CSCty45733. The related Cisco advi...

CVE-2014-2158

Cisco TelePresence MXP Series Software prior to F9.3.1 is affected by CVE-2014-2158 due to a flaw in the SIP implementation that can be exploited by crafted SIP packets to cause a device reload (DoS). The Cisco advisory indicates updates have been released to address these vulnerabilities; upgrad...

CVE-2014-2156

The CVE-2014-2156 issue affects Cisco TelePresence MXP Series Software prior to F9.3.1. It describes a denial-of-service condition where remote attackers can cause a device reload by sending crafted SIP packets, due to a flaw in the SIP implementation (Bug ID CSCty45739). The vulnerability is exp...

Tandberg MXP Series Video Conferencing Device <= F8.2 Remote DoS Vulnerability

Tandberg MXP Series devices are prone to a remote denial of service DoS vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Cisco TANDBERG MXP < 9.0 SNMP Packet Handling DoS

The remote host is running TANDBERG MXP Endpoint, an application used for video conferencing. According to the version number identified in the telnet banner, the TANDBERG MXP Endpoint version running on the remote host is less than F9.0. As such, the install is potentially affected by a remote...

CVE-2011-2544

CVE-2011-2544 is a post-authentication XSS in the Cisco TelePresence System MXP Series web interface (MXP, F9.1 and earlier) triggered by a crafted Call ID. The flaw allows arbitrary HTML/script injection and enables CSRF-driven actions such as password changes, via improper input validation in C...

Adobe Extension Manager CS5 v5.0.298 DLL Hijacking Exploit (dwmapi.dll)

Exploit for windows platform in category local exploits ======================================================================= Adobe Extension Manager CS5 v5.0.298 DLL Hijacking Exploit dwmapi.dll ======================================================================= / Adobe Extension Manager C...

TANDBERG vF8.2 F8.0 F7.2 and F6.3 Remote Denial of Service

No description provided by source. Security Advisory Platform : TANDBERG Date : November 6, 2009 Affected : All MXP FIPS140 Current as of December 8, 2009 Tested : F8.2, F8.0, F7.2, F6.3 Unconf : VCS, BC, C90 Author : otokoyama Problem Description: Issues with the H.225 RAS implementation in...

CVE-2009-3947

Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows remote attackers to cause a denial of service process crash or device reboot or possibly execute arbitrary code via a long USER command, as demonstrated by a command ending with many space characters...

Buffer overflow

Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows remote attackers to cause a denial of service process crash or device reboot or possibly execute arbitrary code via a long USER command, as demonstrated by a command ending with many space characters...

CVE-2009-3947

Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows remote attackers to cause a denial of service process crash or device reboot or possibly execute arbitrary code via a long USER command, as demonstrated by a command ending with many space characters...

CVE-2009-3947

CVE-2009-3947 affects Tandberg MXP Series devices (F7.0 and below) where the FTP service is vulnerable to a buffer overflow triggered by a long USER command (ending with many spaces). This can cause a remote denial of service (process crash or device reboot) and, as stated in sources, may potenti...

Tandberg MXP F7.0 - USER Remote Buffer Overflow (PoC)

Tandberg MXP F7.0 - USER Remote Buffer Overflow PoC TANDBERG BoF v0.1 - Tandberg MXP F7.0 Buffer Overflow Vulnerability PoC By otokoyama + We crash the process FtpCt00 by sending a 251 char string of /x20 commonly known as a blank space.very simple + The BOF happens due to the system passing all...

Tandberg MXP F7.0 Buffer Overflow

TANDBERG BoF v0.1 - Tandberg MXP F7.0 Buffer Overflow Vulnerability PoC By otokoyama + We crash the process FtpCt00 by sending a 251 char string of /x20 commonly known as a blank space.very simple + The BOF happens due to the system passing all usernames:passwords to a log file. + Vendor has fixe...

Tandberg MXP F7.0 (USER) Remote Buffer Overflow PoC

Exploit for unknown platform in category dos / poc =================================================== Tandberg MXP F7.0 USER Remote Buffer Overflow PoC =================================================== TANDBERG BoF v0.1 - Tandberg MXP F7.0 Buffer Overflow Vulnerability PoC By otokoyama + We...