Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ciscoworks server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5582
Cross-site scripting (XSS) vulnerability in the login page in Cisco CiscoWorks Server (CS), possibly 2.6 and previous versions, when using CiscoWorks Common Services 3.0.x and 3.1, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cisco Ciscoworks Server
NA
CVE-2010-3036
Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services prior to 4.0 allow remote malicious users to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.1.1
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.3
Cisco Ciscoworks Lan Management Solution 2.6
Cisco Ciscoworks Lan Management Solution 3.0
Cisco Ciscoworks Lan Management Solution 3.1
Cisco Ciscoworks Lan Management Solution 3.2
Cisco Qos Policy Manager 4.0
Cisco Qos Policy Manager 4.0.1
Cisco Qos Policy Manager 4.0.2
Cisco Security Manager 3.0.2
Cisco Security Manager 3.2
Cisco Telepresence Readiness Assessment Manager 1.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 2.0.3
Cisco Unified Service Monitor 2.0.1
NA
CVE-2005-0356
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote malicious users to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard late...
Cisco Secure Access Control Server 3.2
Cisco Mgx 8230 1.2.11
Cisco Mgx 8250 1.2.10
Cisco Secure Access Control Server 3.2.2
Cisco Personal Assistant 1.3(2)
Cisco Unity Server 2.2
Cisco Secure Access Control Server 2.4
Cisco Secure Access Control Server 3.1.1
Cisco Personal Assistant 1.3(4)
Cisco Unity Server 3.0
Cisco Secure Access Control Server 2.6.3
Cisco Interactive Voice Response
Cisco Secure Access Control Server 2.42
Cisco Call Manager 3.0
Cisco Call Manager 3.1(3a)
Cisco Secure Access Control Server 3.3.2
Cisco Unity Server 3.1
Cisco Call Manager 1.0
Cisco Unity Server 3.3
Cisco Personal Assistant 1.3(3)
Cisco Secure Access Control Server 2.1
Cisco Secure Access Control Server 3.3(1)
1 EDB exploit
NA
CVE-2011-3192
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x up to and including 2.0.64, and 2.2.x up to and including 2.2.19 allows remote malicious users to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as e...
Apache Http Server
Suse Linux Enterprise Server 11
Opensuse Opensuse 11.4
Opensuse Opensuse 11.3
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Server 10
Suse Linux Enterprise Software Development Kit 11
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
2 EDB exploits
1 Nmap script
18 Github repositories
3 Articles
NA
CVE-2005-1247
webadmin.exe in Novell Nsure Audit 1.0.1 allows remote malicious users to cause a denial of service via malformed ASN.1 packets in corrupt client certificates to an SSL server, as demonstrated using an exploit for the OpenSSL ASN.1 parsing vulnerability.
Novell Nsure Audit 1.0.1
NA
CVE-2003-0543
Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote malicious users to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values.
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
1 EDB exploit
NA
CVE-2003-0544
OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote malicious users to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used...
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
9.8
CVSSv3
CVE-2003-0545
Double free vulnerability in OpenSSL 0.9.7 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
NA
CVE-2007-1467
Multiple cross-site scripting (XSS) vulnerabilities in (1) PreSearch.html and (2) PreSearch.class in Cisco Secure Access Control Server (ACS), VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator...
Cisco Unified Video Advantage
Cisco Unified Videoconferencing Manager
Cisco Vpn Client 3.5.2
Cisco Vpn Client 3.5.1
Cisco Vpn Client 3.6.1
Cisco Unified Personal Communicator
Cisco Wireless Lan Solution Engine
Cisco Ip Communicator
Cisco Vpn Client 3.6
Cisco Unified Meetingplace
Cisco Ciscoworks
Cisco Vpn Client 4.0.2c
Cisco Vpn Client 4.0.2a
Cisco Wan Manager
Cisco Wireless Control System 4.0
Cisco Vpn Client 3.5.4
Cisco Network Analysis Module
Cisco Security Device Manager
Cisco Vpn Client 3.5.2b
Cisco Acs Solution Engine 4.1
Cisco Vpn Client 4.8.1
Cisco Unified Videoconferencing
NA
CVE-2005-3886
Unspecified vulnerability in Cisco Security Agent (CSA) 4.5.0 and 4.5.1 agents, when running on Windows systems, allows local users to bypass protections and gain system privileges by executing certain local software.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »