Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cisco unified meetingplace 5.0 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2007-5581
Multiple cross-site scripting (XSS) vulnerabilities in mpweb/scripts/mpx.dll in Cisco Unified MeetingPlace 5.4 and previous versions and 6.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) FirstName and (2) LastName parameters.
Cisco Unified Meetingplace 5.2Cisco Unified Meetingplace 5.0Cisco Unified MeetingplaceCisco Unified Meetingplace 5.3Cisco Unified Meetingplace 5Cisco Unified Meetingplace 4.3.0.246.5Cisco Unified Meetingplace 6.0Cisco Unified Meetingplace 4.3.0.246
9
CVSSv2
CVE-2010-0139
Cisco Unified MeetingPlace 7 prior to 7.0(2.3) hotfix 5F, 6 prior to 6.0.639.2, and possibly 5 does not properly validate SQL commands, which allows remote malicious users to create, modify, or delete data in a database via unspecified vectors, aka Bug ID CSCtc39691.
Cisco Unified Meetingplace 5.0Cisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.2Cisco Unified Meetingplace 5Cisco Unified Meetingplace 6.0.170.0Cisco Unified Meetingplace 6.0.244Cisco Unified Meetingplace 6.0Cisco Unified Meetingplace 7.0.1
4.3
CVSSv2
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl OpensslOpenssl Openssl 1.0.1mOpenssl Openssl 1.0.2aOpenssl Openssl 1.0.1jOpenssl Openssl 1.0.0nOpenssl Openssl 1.0.1Openssl Openssl 1.0.0cOpenssl Openssl 1.0.0iOpenssl Openssl 1.0.0Openssl Openssl 1.0.1hOpenssl Openssl 1.0.0mOpenssl Openssl 1.0.1cOpenssl Openssl 1.0.1gOpenssl Openssl 1.0.0hOpenssl Openssl 1.0.0eOpenssl Openssl 1.0.0fOpenssl Openssl 1.0.0dOpenssl Openssl 1.0.0jOpenssl Openssl 1.0.0pOpenssl Openssl 1.0.1aOpenssl Openssl 1.0.0oOpenssl Openssl 1.0.1d
5
CVSSv2
CVE-2015-1794
The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.
Openssl Openssl 1.0.2aOpenssl Openssl 1.0.2bOpenssl Openssl 1.0.2cOpenssl Openssl 1.0.2Openssl Openssl 1.0.2d
5
CVSSv2
CVE-2015-3193
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 prior to 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote malicious users to obt...
Openssl Openssl 1.0.2aOpenssl Openssl 1.0.2bOpenssl Openssl 1.0.2cOpenssl Openssl 1.0.2Openssl Openssl 1.0.2dNodejs Node.jsCanonical Ubuntu Linux 15.10Canonical Ubuntu Linux 15.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook