Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cisco unified meetingplace 7.0.1 vulnerabilities and exploits

(subscribe to this query)

9
CVSSv2
CVE-2010-0139
Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.2, and possibly 5 does not properly validate SQL commands, which allows remote attackers to create, modify, or delete data in a database via unspecified vectors, aka Bug ID CSCtc39691....
Cisco Unified Meetingplace 5Cisco Unified Meetingplace 5.0Cisco Unified Meetingplace 6.0Cisco Unified Meetingplace 6.0.170.0Cisco Unified Meetingplace 6.0.244Cisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.1Cisco Unified Meetingplace 7.0.2
6.8
CVSSv2
CVE-2013-1128
Multiple cross-site request forgery (CSRF) vulnerabilities in the server in Cisco Unified MeetingPlace before 7.1(2.2000) allow remote attackers to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCuc64903. NOTE: some of these details are...
Cisco Unified Meetingplace 5.4Cisco Unified Meetingplace 6.0Cisco Unified Meetingplace 6.1Cisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.1Cisco Unified Meetingplace 7.0.2Cisco Unified Meetingplace 7.0.3Cisco Unified Meetingplace
10
CVSSv2
CVE-2010-0140
Multiple unspecified vulnerabilities in the web server in Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.3, and possibly 5 allow remote attackers to create (1) user or (2) administrator accounts via a crafted URL in a request to the internal interface,...
Cisco Unified Meetingplace 5.2Cisco Unified Meetingplace 5.3Cisco Unified Meetingplace 5.4Cisco Unified Meetingplace 6.0Cisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.1Cisco Unified Meetingplace 7.0.2
7.8
CVSSv2
CVE-2012-5416
Buffer overflow in Cisco Unified MeetingPlace Web Conferencing before 7.1MR1 Patch 1, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 allows remote attackers to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua66341....
Cisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.1Cisco Unified Meetingplace 7.0.2Cisco Unified Meetingplace 7.0.3Cisco Unified Meetingplace 7.1Cisco Unified MeetingplaceCisco Unified Meetingplace 8.0Cisco Unified Meetingplace 8.5Cisco Unified Meetingplace 8.5.1Cisco Unified Meetingplace 8.5.2Cisco Unified Meetingplace 8.5.3Cisco Unified Meetingplace 8.5.4
7.6
CVSSv2
CVE-2013-1168
The web server in Cisco Unified MeetingPlace Application Server 7.x before 7.1MR1 Patch 2, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 Patch 1 does not invalidate a session upon a logout action, which makes it easier for remote attackers to hijack sessions by leveraging...
Cisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.1Cisco Unified Meetingplace 7.0.2Cisco Unified Meetingplace 7.0.3Cisco Unified Meetingplace 7.1Cisco Unified Meetingplace 8.0Cisco Unified Meetingplace 8.5Cisco Unified Meetingplace 8.5.1Cisco Unified Meetingplace 8.5.2Cisco Unified Meetingplace 8.5.3
5.8
CVSSv2
CVE-2009-3555
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4...
Apache Http ServerGnu GnutlsMozilla NssOpenssl OpensslOpenssl Openssl 1.0Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10Debian Debian Linux 4.0Debian Debian Linux 5.0Debian Debian Linux 6.0Debian Debian Linux 7.0Debian Debian Linux 8.0Fedoraproject Fedora 11Fedoraproject Fedora 12Fedoraproject Fedora 13Fedoraproject Fedora 14
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-24686CVE-2021-21298CVE-2021-69420server-side request forgeryCVE-2021-23957microsoftSSTI.netSQLCVE-2021-21273CVE-2021-25281