2069 matches found
Huawei EchoLife HG520c Denial of Service and Modem Reset
No description provided by source. Exploit Title: Huawei EchoLife HG520c Denial of Service and Modem Reset Date: 2010-04-19 Author: hkm Product Link: http://www.huawei.com/mobileweb/en/products/view.do?id=660 Firmware Versions: 3.10.18.7-1.0.7.0 3.10.18.5-1.0.7.0 3.10.18.4 Software Versions:...
CVE-2014-4047
Asterisk Open Source 1.8.x before 1.8.28.1, 11.x before 11.10.1, and 12.x before 12.3.1 and Certified Asterisk 1.8.15 before 1.8.15-cert6 and 11.6 before 11.6-cert3 allows remote attackers to cause a denial of service connection consumption via a large number of 1 inactive or 2 incomplete HTTP...
Heap overflow
Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300,...
OpenJDK: Activation framework default command map caching (JAX-WS, 8025152)
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423...
PT-2014-2081 · Gnu +1 · Cpio +1
Name of the Vulnerable Software and Affected Versions: cpio versions 2007.05.10 through 2010.07.28 Description: The issue allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive. Recommendations: For versions 2007.05.10 through 2010.07.28, consider...
OpenJDK: insufficient checks of KDC replies (JGSS, 8014341)
Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JGSS...
CVE-2013-2168
The dbusprintfstringupperbound function in dbus/dbus-sysdeps-unix.c in D-Bus aka DBus 1.4.x before 1.4.26, 1.6.x before 1.6.12, and 1.7.x before 1.7.4 allows local users to cause a denial of service service crash via a crafted message...
Authentication flaw
The authentication-proxy implementation on Cisco Adaptive Security Appliances ASA devices with software 7.x before 7.25.10, 8.0 before 8.05.31, 8.1 and 8.2 before 8.25.38, 8.3 before 8.32.37, 8.4 before 8.45.3, 8.5 and 8.6 before 8.61.10, 8.7 before 8.71.4, 9.0 before 9.01.1, and 9.1 before 9.11....
PT-2013-2919 · Cisco · Cisco Asa
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA devices with software versions prior to 7.25.10 Cisco Adaptive Security Appliances ASA devices with software versions 8.0 prior to 8.05.31 Cisco Adaptive Security Appliances ASA devices with software...
[security bulletin] HPSBST02848 SSRT101112 rev.1 - HP XP P9000 Command View Advanced Edition Suite Products, Remote Disclosure of Information
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03691745 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03691745 Version: 1 HPSBST02848...
PT-2012-5530 · Cisco · Cisco Asa +2
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.2 through 8.25.16 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.3 through 8.32.27 Cisco Adaptive Security Appliances ASA 5500 series devices version...
Buffer overflow
Buffer overflow in the Cisco Port Forwarder ActiveX control in cscopf.ocx, as distributed through the Clientless VPN feature on Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.0 through 7.2 before 7.25.6, 8.0 before 8.05.26, 8.1 before 8.12.53, 8.2 before 8.25.18, 8.3...
Sysax 5.53 - SSH 'Username' Remote Buffer Overflow Remote Code Execution (Egghunter)
!/usr/bin/python Title: Sysax " sys.exit1 host = sys.argv1 port = intsys.argv2 egghunter = "\x66\x81\xca\xff\x0f\x42\x52\x6a\x02\x58\xcd\x2e\x3c\x05" "\x5a\x74\xef\xb8\x44\x4e\x57\x50\x8b\xfa\xaf\x75\xea\xaf" "\x75\xe7\xff\xe7" msfpayload windows/shellbindtcp LPORT=4444 R | msfencode -e -e...
Design/Logic Flaw
Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.08.13, 7.1 and 7.2 before 7.25.4, 8.0 before 8.05.25, 8.1 and 8.2 before 8.25.11, 8.3 before 8.32.23, 8.4 before 8.42.6, and 8.5 before 8.51.1...
Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of Service Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of Service Vulnerability Document ID: 112916 Advisory ID: cisco-sa-20110427-wlc Revision 1.0 For Public Release 2011 April 27 1600 UTC GMT...
CVE-2011-0394
Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.0 before 7.08.11, 7.1 and 7.2 before 7.25.1, 8.0 before 8.05.19, 8.1 before 8.12.47, 8.2 before 8.22.19, and 8.3 before 8.31.8; Cisco PIX Security Appliances 500 series devices; and Cisco Firewall Services Module aka FWSM...
CVE-2011-0394
Cisco Adaptive Security Appliances ASA 5500 series devices with software 7.0 before 7.08.11, 7.1 and 7.2 before 7.25.1, 8.0 before 8.05.19, 8.1 before 8.12.47, 8.2 before 8.22.19, and 8.3 before 8.31.8; Cisco PIX Security Appliances 500 series devices; and Cisco Firewall Services Module aka FWSM...
Cisco Security Advisory: Cisco Content Services Gateway Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Content Services Gateway Vulnerabilities Advisory ID: cisco-sa-20110126-csg2 http://www.cisco.com/warp/public/707/cisco-sa-20110126-csg2.shtml Revision 1.0 For Public Release 2011 January 26 1600 UTC GMT...
CVE-2010-3056
Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.11.x before 2.11.10.1 and 3.x before 3.3.5.1 allow remote attackers to inject arbitrary web script or HTML via vectors related to 1 dbsearch.php, 2 dbsql.php, 3 dbstructure.php, 4 js/messages.php, 5 libraries/common.lib.php, 6...
CVE-2010-2273
Multiple cross-site scripting XSS vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to...