Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ciscoworks vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2003-0545
Double free vulnerability in OpenSSL 0.9.7 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
NA
CVE-2003-0732
CiscoWorks Common Management Foundation (CMF) 2.1 and previous versions allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modify or delete users pages.
Cisco Resource Manager 1.1
Cisco Resource Manager Essentials 2.1
Cisco Resource Manager 1.0
Cisco Resource Manager Essentials 2.0
Cisco Resource Manager Essentials 2.2
Cisco Ciscoworks Cd1 3rd
Cisco Ciscoworks Cd1 5th
Cisco Ciscoworks Common Management Foundation 2.0
Cisco Ciscoworks Common Management Foundation 2.1
Cisco Ciscoworks Cd1 1st
Cisco Ciscoworks Cd1 2nd
Cisco Ciscoworks Cd1 4th
NA
CVE-2003-0731
CiscoWorks Common Management Foundation (CMF) 2.1 and previous versions allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a mod...
Cisco Resource Manager 1.1
Cisco Resource Manager Essentials 2.1
Cisco Resource Manager Essentials 2.2
Cisco Resource Manager 1.0
Cisco Resource Manager Essentials 2.0
Cisco Ciscoworks Cd1 1st
Cisco Ciscoworks Cd1 3rd
Cisco Ciscoworks Common Management Foundation 2.0
Cisco Ciscoworks Cd1 4th
Cisco Ciscoworks Cd1 5th
Cisco Ciscoworks Common Management Foundation 2.1
Cisco Ciscoworks Cd1 2nd
NA
CVE-2003-0682
"Memory bugs" in OpenSSH 3.7.1 and previous versions, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695.
Openbsd Openssh
NA
CVE-2003-0695
Multiple "buffer management errors" in OpenSSH prior to 3.7.1 may allow malicious users to cause a denial of service or execute arbitrary code using (1) buffer_init in buffer.c, (2) buffer_free in buffer.c, or (3) a separate function in channels.c, a different vulnerabi...
Openbsd Openssh
NA
CVE-2003-0693
A "buffer management error" in buffer_append_space of buffer.c for OpenSSH prior to 3.7 may allow remote malicious users to execute arbitrary code by causing an incorrect amount of memory to be freed and corrupting the heap, a different vulnerability than CVE-2003-0695.
Openbsd Openssh
NA
CVE-2002-0364
Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows malicious users to execute arbitrary code via the processing of HTR request sessions, aka "Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise."
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0
NA
CVE-2002-0071
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows malicious users to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0
NA
CVE-2002-0072
The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server (IIS) 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote malicious users to cause a denial of service (crash) when t...
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0
NA
CVE-2002-0073
The FTP service in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows attackers who have established an FTP session to cause a denial of service via a specially crafted status request containing glob characters.
Microsoft Internet Information Services 5.0
Microsoft Internet Information Server 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »