48 matches found
EUVD-2015-4343
Malware in sbrugna...
EUVD-2015-6355
Malware in sbrugna...
EUVD-2015-4338
Malware in sbrugna...
EUVD-2015-4350
Malware in sbrugna...
EUVD-2015-4351
Malware in sbrugna...
CVE-2018-0358
A vulnerability in the file descriptor handling of Cisco TelePresence Video Communication Server VCS Expressway could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to exhaustion of file descriptors while processing a high volume of...
Cisco TelePresence Video Communication Server Expressway Denial of Service Vulnerability
A vulnerability in the file descriptor handling of Cisco TelePresence Video Communication Server VCS Expressway could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to exhaustion of file descriptors while processing a high volume of...
Cisco TelePresence VCS and VCS Expressway Multiple Vulnerabilities (Dec 2015)
Cisco TelePresence Video Communication Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Design/Logic Flaw
Cisco TelePresence Video Communication Server VCS Expressway X8.6 allows remote authenticated users to bypass intended read-only restrictions and upload Tandberg Linux Package TLP files by visiting an administrative page, aka Bug ID CSCuw55651...
CVE-2015-6413
Cisco TelePresence VCS Expressway X8.6 contains a web‑framework access control flaw that allows remote authenticated users to bypass read‑only restrictions and upload Tandberg Linux Package (TLP) files by visiting an administrative page (CVE-2015-6413). Root cause: missing authorization checks on...
CVE-2015-6413
Cisco TelePresence Video Communication Server VCS Expressway X8.6 allows remote authenticated users to bypass intended read-only restrictions and upload Tandberg Linux Package TLP files by visiting an administrative page, aka Bug ID CSCuw55651...
Cisco TelePresence Video Communication Server Expressway Web Framework Code Unauthorized Access Vulnerability
A vulnerability in the web framework code of Cisco TelePresence Video Communication Server VCS Expressway could allow an authenticated, remote attacker to install Tandberg Linux Packages TLPs without proper authorization. The vulnerability is due to missing authorization checks on certain...
Cisco TelePresence VCS Expressway 8.5.1 / 8.5.2 request-xconfdump Symbolic Link Local File Manipulation (cisco-sa-20141007-vcs)
According to its self-reported version, the instance of Cisco TelePresence Video Communication Server VCS Expressway running on the remote host is affected by a file manipulation vulnerability in request-xconfdump due to insufficient protection of files. An authenticated, local attacker can explo...
CVE-2015-6318
Cisco TelePresence Video Communication Server VCS Expressway X8.5.1 and X8.5.2 allows local users to write to arbitrary files via an unspecified symlink attack, aka Bug ID CSCuv11969...
Command injection
The process-management implementation in Cisco TelePresence Video Communication Server VCS Expressway X8.5.2 allows local users to gain privileges by terminating a firestarter.py supervised process and then triggering the restart of a process by the root account, aka Bug ID CSCuv12272...
Code injection
Cisco TelePresence Video Communication Server VCS Expressway X8.5.1 and X8.5.2 allows local users to write to arbitrary files via an unspecified symlink attack, aka Bug ID CSCuv11969...
CVE-2015-6318
Cisco TelePresence Video Communication Server VCS Expressway X8.5.1 and X8.5.2 allows local users to write to arbitrary files via an unspecified symlink attack, aka Bug ID CSCuv11969...
CVE-2015-4325
CVE-2015-4325 affects Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2. The issue is in the process-management code: terminating a firestarter.py supervised process and triggering a restart via the root account allows local attackers to gain elevated privileges. The Cisco adv...
Cisco TelePresence VCS Expressway Process Management Elevation of Privilege Vulnerability
Cisco TelePresence VCS Expressway is a video conferencing application. A security vulnerability in the Cisco TelePresence VCS Expressway process management code allows local users to exploit the vulnerability to execute arbitrary commands with ROOT privileges...
CVE-2015-4330
A local file script in Cisco TelePresence Video Communication Server VCS Expressway X8.5.2 allows local users to gain privileges for OS command execution via invalid parameters, aka Bug ID CSCuv10556...