cisco security agent 5.2 vulnerabilities and exploits

(subscribe to this query)

6.5

CVSSv2

SQL injection vulnerability in the Management Center for Cisco Security Agents 5.1 before 5.1.0.117, 5.2 before 5.2.0.296, and 6.0 before 6.0.1.132 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors....

Cisco Security Agent 5.1 Cisco Security Agent 5.2 Cisco Security Agent 6.0

10

CVSSv2

The Management Console (webagent.exe) in Cisco Security Agent 5.1, 5.2, and 6.0 before 6.0.2.145 allows remote attackers to create arbitrary files and execute arbitrary code via unspecified parameters in a crafted st_upload request....

Cisco Security Agent 5.1 Cisco Security Agent 5.2 Cisco Security Agent 6.01 EDB exploit available

6.8

CVSSv2

Directory traversal vulnerability in the Management Center for Cisco Security Agents 6.0 allows remote authenticated users to read arbitrary files via unspecified vectors....

Cisco Security Agent 6.0

7.8

CVSSv2

Unspecified vulnerability in Cisco Security Agent 5.2 before 5.2.0.285, when running on Linux, allows remote attackers to cause a denial of service (kernel panic) via "a series of TCP packets."...

Cisco Security Agent 5.2

7.8

CVSSv2

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in...

Apache Http Server 1.3 Apache Http Server 1.3.0 Apache Http Server 1.3.1 Apache Http Server 1.3.1.1 Apache Http Server 1.3.2 Apache Http Server 1.3.3 Apache Http Server 1.3.4 Apache Http Server 1.3.5 Apache Http Server 1.3.6 Apache Http Server 1.3.7 Apache Http Server 1.3.8 Apache Http Server 1.3.9 Apache Http Server 1.3.10 Apache Http Server 1.3.11 Apache Http Server 1.3.12 Apache Http Server 1.3.13 Apache Http Server 1.3.14 Apache Http Server 1.3.15 Apache Http Server 1.3.16 Apache Http Server 1.3.17 Apache Http Server 1.3.18 Apache Http Server 1.3.19 Apache Http Server 1.3.20 Apache Http Server 1.3.22 Apache Http Server 1.3.23 Apache Http Server 1.3.24 Apache Http Server 1.3.25 Apache Http Server 1.3.26 Apache Http Server 1.3.27 Apache Http Server 1.3.28 Apache Http Server 1.3.29 Apache Http Server 1.3.30 Apache Http Server 1.3.31 Apache Http Server 1.3.32 Apache Http Server 1.3.33 Apache Http Server 1.3.34 Apache Http Server 1.3.35 Apache Http Server 1.3.36 Apache Http Server 1.3.37 Apache Http Server 1.3.38 Apache Http Server 1.3.39 Apache Http Server 1.3.41 Apache Http Server 1.3.42 Apache Http Server 1.3.65 Apache Http Server 1.3.68 Apache Http Server 2.0 Apache Http Server 2.0.9 Apache Http Server 2.0.28 Apache Http Server 2.0.32 Apache Http Server 2.0.34 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.39 Apache Http Server 2.0.40 Apache Http Server 2.0.41 Apache Http Server 2.0.42 Apache Http Server 2.0.43 Apache Http Server 2.0.44 Apache Http Server 2.0.45 Apache Http Server 2.0.46 Apache Http Server 2.0.47 Apache Http Server 2.0.48 Apache Http Server 2.0.49 Apache Http Server 2.0.50 Apache Http Server 2.0.51 Apache Http Server 2.0.52 Apache Http Server 2.0.53 Apache Http Server 2.0.54 Apache Http Server 2.0.55 Apache Http Server 2.0.56 Apache Http Server 2.0.57 Apache Http Server 2.0.58 Apache Http Server 2.0.59 Apache Http Server 2.0.60 Apache Http Server 2.0.61 Apache Http Server 2.0.63 Apache Http Server 2.0.64 Apache Http Server 2.2.0 Apache Http Server 2.2.1 Apache Http Server 2.2.2 Apache Http Server 2.2.3 Apache Http Server 2.2.4 Apache Http Server 2.2.6 Apache Http Server 2.2.8 Apache Http Server 2.2.9 Apache Http Server 2.2.10 Apache Http Server 2.2.11 Apache Http Server 2.2.12 Apache Http Server 2.2.13 Apache Http Server 2.2.14 Apache Http Server 2.2.15 Apache Http Server 2.2.16 Apache Http Server 2.2.18 Apache Http Server 2.2.192 EDB exploits available1 Metasploit module available1 Nmap script available12 Github repositories available5 Articles available

1.8

CVSSv2

The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-the-middle attackers to spoof packets by omitting the MAC....

Ntp Ntp3 Articles available

4.3

CVSSv2

The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easier for man-in-the-middle attackers to cause a denial of service (synchronization...

Ntp Ntp2 Articles available

5

CVSSv2

OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a...

5

CVSSv2

Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay...

1 2 3 4 5 6 NEXT »