CVE-2016-1476

Cross-site scripting XSS vulnerability on Cisco IP Phone 8800 devices with software 11.0 allows remote authenticated users to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCuz03024...

Cross site scripting

Cross-site scripting XSS vulnerability on Cisco IP Phone 8800 devices with software 11.0 allows remote authenticated users to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCuz03024...

CVE-2016-1435

Cisco 8800 phones with software 11.01 do not properly enforce mounted-filesystem permissions, which allows local users to write to arbitrary files by leveraging shell access, aka Bug ID CSCuz03014...

CVE-2016-1434

The license-certificate upload functionality on Cisco 8800 phones with software 11.01 allows remote authenticated users to delete arbitrary files via an invalid file, aka Bug ID CSCuz03010...

CVE-2016-1434

The license-certificate upload functionality on Cisco 8800 phones with software 11.01 allows remote authenticated users to delete arbitrary files via an invalid file, aka Bug ID CSCuz03010...

Design/Logic Flaw

Cisco 8800 phones with software 11.01 do not properly enforce mounted-filesystem permissions, which allows local users to write to arbitrary files by leveraging shell access, aka Bug ID CSCuz03014...

Code injection

The license-certificate upload functionality on Cisco 8800 phones with software 11.01 allows remote authenticated users to delete arbitrary files via an invalid file, aka Bug ID CSCuz03010...

CVE-2014-3331

The Session Manager component in Packet Data Network Gateway aka PGW in Cisco ASR 5000 Series Software 11.0, 12.0, 12.1, 12.2, 14.0, 15.0, 16.x through 16.1.2, and 17.0 allows remote attackers to cause a denial of service process crash via a crafted TCP packet, aka Bug ID CSCuo21914...