Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco call manager 4.3 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-0291
The sigalgs implementation in t1_lib.c in OpenSSL 1.0.2 prior to 1.0.2a allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) by using an invalid signature_algorithms extension in the ClientHello message during a renegotiation.
Openssl Openssl 1.0.2
3 Github repositories
2 Articles
5
CVSSv2
CVE-2005-0356
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote malicious users to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard late...
Cisco Interactive Voice Response
Cisco Ip Contact Center Enterprise
Cisco Personal Assistant 1.4\\(2\\)
Cisco Emergency Responder 1.1
Cisco Intelligent Contact Manager 5.0
Cisco Personal Assistant 1.3\\(3\\)
Cisco Personal Assistant 1.3\\(4\\)
Cisco Personal Assistant 1.4\\(1\\)
Cisco Secure Access Control Server 2.3
Cisco Secure Access Control Server 2.6
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 3.2\\(1.20\\)
Cisco Secure Access Control Server 3.2\\(2\\)
Cisco Agent Desktop
Cisco E-mail Manager
Cisco Personal Assistant 1.3\\(1\\)
Cisco Personal Assistant 1.3\\(2\\)
Cisco Secure Access Control Server 2.3.5.1
Cisco Secure Access Control Server 2.3.6.1
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 3.1.1
1 EDB exploit
5
CVSSv2
CVE-2004-0081
OpenSSL 0.9.6 prior to 0.9.6d does not properly handle unknown message types, which allows remote malicious users to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1 \\(3.005\\)
Cisco Firewall Services Module
Cisco Firewall Services Module 1.1.2
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Hp Aaa Server
Cisco Ciscoworks Common Management Foundation 2.1
Cisco Ciscoworks Common Services 2.2
Avaya Sg208 4.4
Avaya Sg5 4.2
Avaya Sg5 4.3
Freebsd Freebsd 5.1
Hp Hp-ux 8.05
Openbsd Openbsd 3.3
Redhat Linux 8.0
Sco Openserver 5.0.6
Avaya Sg203 4.4
Avaya Sg208
Freebsd Freebsd 4.8
5
CVSSv2
CVE-2004-0112
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshak...
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 \\(3.005\\)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
5
CVSSv2
CVE-2004-0079
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 \\(3.005\\)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
4.3
CVSSv2
CVE-2015-0208
The ASN.1 signature-verification implementation in the rsa_item_verify function in crypto/rsa/rsa_ameth.c in OpenSSL 1.0.2 prior to 1.0.2a allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via crafted RSA PSS parameters to...
Openssl Openssl 1.0.2
4.3
CVSSv2
CVE-2015-0285
The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms by sniffing the network and then...
Openssl Openssl 1.0.2
4.3
CVSSv2
CVE-2007-4633
Multiple cross-site scripting (XSS) vulnerabilities in Cisco CallManager and Unified Communications Manager (CUCM) prior to 3.3(5)sr2b, 4.1 prior to 4.1(3)sr5, 4.2 prior to 4.2(3)sr2, and 4.3 prior to 4.3(1)sr1 allow remote malicious users to inject arbitrary web script or HTML v...
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Call Manager 4.1\\(3\\)sr3
Cisco Call Manager 4.1\\(3\\)sr4
Cisco Call Manager 4.3\\(1\\)
Cisco Call Manager 4.3\\(1\\)sr1
Cisco Call Manager 4.1\\(3\\)sr1
Cisco Call Manager 4.1\\(3\\)sr2
Cisco Call Manager 4.2\\(3\\)sr1
Cisco Call Manager 4.2\\(3\\)sr2
Cisco Call Manager 4.3
Cisco Call Manager 3.3\\(5\\)sr2a
Cisco Call Manager 4.1
Cisco Call Manager 4.2\\(2\\)
Cisco Call Manager 4.2\\(3\\)
Cisco Call Manager 3.3\\(5\\)sr1
Cisco Call Manager 3.3\\(5\\)sr2
Cisco Call Manager 4.2
Cisco Call Manager 4.2\\(1\\)
4.3
CVSSv2
CVE-2007-2832
Cross-site scripting (XSS) vulnerability in the web application firewall in Cisco CallManager prior to 3.3(5)sr3, 4.1 prior to 4.1(3)sr5, 4.2 prior to 4.2(3)sr2, and 4.3 prior to 4.3(1)sr1 allows remote malicious users to inject arbitrary web script or HTML via the pattern parame...
Cisco Call Manager 3.3\\(4\\)es25
Cisco Call Manager 3.3\\(5\\)
Cisco Call Manager 4.1\\(3\\)es07
Cisco Call Manager 4.1\\(3\\)es32
Cisco Call Manager 3.3
Cisco Call Manager 3.3\\(5\\)sr2
Cisco Call Manager 4.1
Cisco Call Manager 4.1\\(3\\)sr3
Cisco Call Manager 4.2\\(3\\)
Cisco Call Manager 3.3\\(5\\)es30
Cisco Call Manager 3.3\\(5\\)sr1
Cisco Call Manager 4.1\\(3\\)sr1
Cisco Call Manager 4.1\\(3\\)sr2
Cisco Call Manager 3.3\\(3\\)
Cisco Call Manager 3.3\\(3\\)es61
Cisco Call Manager 4.1\\(2\\)es33
Cisco Call Manager 4.1\\(2\\)es55
Cisco Call Manager 4.2\\(3\\)sr1
Cisco Call Manager 4.3\\(1\\)
1 EDB exploit
4.3
CVSSv2
CVE-2006-3109
Cross-site scripting (XSS) vulnerability in Cisco CallManager 3.3 prior to 3.3(5)SR3, 4.1 prior to 4.1(3)SR4, 4.2 prior to 4.2(3), and 4.3 prior to 4.3(1), allows remote malicious users to inject arbitrary web script or HTML via the (1) pattern parameter in ccmadmin/phonelist.asp...
Cisco Call Manager 3.3\\(4\\)es25
Cisco Call Manager 3.3\\(5\\)
Cisco Call Manager 3.3\\(5\\)es30
Cisco Call Manager 4.1\\(3\\)es32
Cisco Call Manager 3.3
Cisco Call Manager 4.1
Cisco Call Manager 4.1\\(2\\)es33
Cisco Call Manager 4.2
Cisco Call Manager 4.2\\(1\\)
Cisco Call Manager 3.3\\(5\\)sr1
Cisco Call Manager 3.3\\(5\\)sr2
Cisco Call Manager 4.1\\(3\\)sr2
Cisco Call Manager 4.1\\(3\\)sr3
Cisco Call Manager 4.1\\(3\\)sr1
Cisco Call Manager 4.3\\(1\\)
Cisco Call Manager 3.3\\(3\\)
Cisco Call Manager 3.3\\(3\\)es61
Cisco Call Manager 4.1\\(2\\)es55
Cisco Call Manager 4.1\\(3\\)es07
Cisco Call Manager 4.2\\(2\\)
Cisco Call Manager 4.3
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »