cisco wide area application services 4.3.1 vulnerabilities and exploits

(subscribe to this query)

The web service framework in Cisco WAAS Software 4.x and 5.x prior to 5.0.3e, 5.1.x prior to 5.1.1c, and 5.2.x prior to 5.2.1 in a Central Manager (CM) configuration allows remote malicious users to execute arbitrary code via a crafted POST request, aka Bug ID CSCuh26626.

Cisco Wide Area Application Services 4.0.5 Cisco Wide Area Application Services 4.0.7 Cisco Wide Area Application Services 4.0.23 Cisco Wide Area Application Services 4.0.25 Cisco Wide Area Application Services 4.0.1 Cisco Wide Area Application Services 4.0.3 Cisco Wide Area Application Services 4.0.19 Cisco Wide Area Application Services 4.0.21 Cisco Wide Area Application Services 4.0.13 Cisco Wide Area Application Services 4.0.17 Cisco Wide Area Application Services 4.0.9 Cisco Wide Area Application Services 4.0.11 Cisco Wide Area Application Services 4.0.27 Cisco Wide Area Application Services 4.1.1 Cisco Wide Area Application Services 4.1.3 Cisco Wide Area Application Services 4.1.5 Cisco Wide Area Application Services 4.1.7 Cisco Wide Area Application Services 4.2.3 Cisco Wide Area Application Services 4.2.1 Cisco Wide Area Application Services 4.3.5 Cisco Wide Area Application Services 4.3.1 Cisco Wide Area Application Services 4.3.3

The web framework in Cisco WAAS Software prior to 4.x and 5.x prior to 5.0.3e, 5.1.x prior to 5.1.1c, and 5.2.x prior to 5.2.1; Cisco ACNS Software 4.x and 5.x prior to 5.5.29.2; Cisco ECDS Software 2.x prior to 2.5.6; Cisco CDS-IS Software 2.x prior to 2.6.3.b50 and 3.1.x prior ...

Cisco Wide Area Application Services 4.1.1 Cisco Wide Area Application Services 4.1.3 Cisco Wide Area Application Services 4.1.5 Cisco Wide Area Application Services 4.1.7 Cisco Wide Area Application Services 4.3.5 Cisco Wide Area Application Services 4.3.1 Cisco Wide Area Application Services 4.3.3 Cisco Wide Area Application Services 5.0.3 Cisco Wide Area Application Services 5.0.1 Cisco Wide Area Application Services 4.2.1 Cisco Wide Area Application Services 4.2.3 Cisco Wide Area Application Services 4.4.3 Cisco Wide Area Application Services 4.4.7 Cisco Wide Area Application Services 4.4.5 Cisco Wide Area Application Services 4.4.1 Cisco Wide Area Application Services 5.1.1 Cisco Wide Area Application Services 5.2 Cisco Wide Area Application Services 4.0.1 Cisco Wide Area Application Services 4.0.3 Cisco Wide Area Application Services 4.0.19 Cisco Wide Area Application Services 4.0.21 Cisco Wide Area Application Services 4.0.9

An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...

Ntp Ntp-dev 4.3.70

Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.

Ntp Ntp Ntp Ntp 4.2.8 Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -

Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...

Ntp Ntp Ntp Ntp 4.2.8

The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.

Ntp Ntp Ntp Ntp 4.2.8 Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -

Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.

Ntp Ntp Ntp Ntp 4.2.8 Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -

The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.

Ntp Ntp Ntp Ntp 4.2.8 Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -Citrix Xenserver 6.0.2 Citrix Xenserver 6.2.0 Citrix Xenserver 6.5 Citrix Xenserver 7.0 Siemens Tim 4r-ie Firmware Siemens Tim 4r-ie Dnp3 Firmware

ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.

Ntp Ntp Ntp Ntp 4.2.8 Debian Debian Linux 7.0 Debian Debian Linux 8.0 Debian Debian Linux 9.0 Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -

The decodenetnum function in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.

Ntp Ntp Ntp Ntp 4.2.8 Debian Debian Linux 7.0 Debian Debian Linux 8.0 Debian Debian Linux 9.0 Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -Siemens Tim 4r-ie Firmware Siemens Tim 4r-ie Dnp3 Firmware

1 EDB exploit

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook