Lucene search
+L

1685 matches found

seebug
seebug
added 2008/05/17 12:0 a.m.28 views

Cisco内容交换模块7层负载均衡拒绝服务漏洞

BUGTRAQ ID: 29216 CVECAN ID: CVE-2008-1749 Catalyst内容交换模块(CSM)是Catalyst 6500和7600系列的集成服务器负载均衡线卡,用于改善客户端通讯对端点的响应时间。 如果对CSM或CSM-S配置了7层负载均衡的话,Cisco CSM和Cisco CSM-S的某些软件版本中就会存在内存泄露漏洞。当CSM或CSM-S处理带有特制TCP标记组合的TCP段且无法确认负载均衡时,由于CSM/CSM-S后的服务器过载和/或无法接受TCP连接,可能触发内存泄露。...

7.8CVSS6.4AI score0.01916EPSS
Exploits1
securityvulns
securityvulns
added 2008/03/26 12:0 a.m.87 views

Cisco Security Advisory: Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720 Advisory ID: cisco-sa-20080326-queue http://www.cisco.com/warp/public/707/cisco-sa-20080326-queue.shtml Revision...

6.8CVSS0.4AI score0.03089EPSS
Exploits1
securityvulns
securityvulns
added 2007/12/19 12:0 a.m.52 views

Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module Advisory ID: cisco-sa-20071219-fwsm ============ Revision 1.0 ============ Last Updated 2007 December 19 1600 UTC GMT For Public Release 2007 December 19...

7.8CVSS0.6AI score0.01978EPSS
Exploits1
cvelist
cvelist
added 2007/10/26 7:0 p.m.19 views

CVE-2002-2316

Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing...

6.2AI score0.01232EPSS
Exploits1References4
cve
cve
added 2007/10/26 7:0 p.m.41 views

CVE-2002-2316

Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 may fail to learn MAC addresses from a single initial packet, causing unicast traffic to be broadcast and allowing remote attackers to sniff sensitive network information. The connected Red Hat and CVE registries confirm th...

5CVSS6.6AI score0.01232EPSS
Exploits1References4Affected Software1
cvelist
cvelist
added 2007/10/14 8:0 p.m.24 views

CVE-2002-2239

The Cisco Optical Service Module OSM for the Catalyst 6500 and 7600 series running Cisco IOS 12.18E through 12.113.4E allows remote attackers to cause a denial of service hang via a malformed packet...

6.7AI score0.01602EPSS
Exploits0References3
cve
cve
added 2007/10/14 8:0 p.m.51 views

CVE-2002-2239

The Cisco Optical Service Module (OSM) in Catalyst 6500/7600 chassis with IOS 12.1(8)E–12.1(13.4)E is affected. A malformed-packet can be sent remotely to cause a denial of service (hang) via the OSM, as documented in multiple sources (OSM LC IOS vulnerability). The issue originates from how spec...

7.8CVSS6.7AI score0.01602EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2007/09/27 7:0 p.m.23 views

CVE-2007-5134

Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel EOBC internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended...

6.8AI score0.02482EPSS
Exploits1References8
cve
cve
added 2007/09/27 7:0 p.m.60 views

CVE-2007-5134

Cisco Catalyst 6500 and Cisco 7600 Series devices are affected by CVE-2007-5134 due to handling of 127.0.0.0/8 EOBC (loopback) addresses, which could allow an unauthenticated, remote attacker to bypass ACLs and send packets to management interfaces such as the Supervisor or MSFC. The vulnerabilit...

5CVSS6.9AI score0.02482EPSS
Exploits1References8Affected Software9
cisco
cisco
added 2007/09/26 10:30 p.m.20 views

Cisco IOS on Catalyst 6500 and Cisco 7600 Access Control List Bypass Vulnerability

Cisco IOS running on Catalyst 6500 and Cisco 7600 contains a vulnerability that could allow an unauthenticated, remote attacker to bypass configured ACLs. The vulnerability exists because the affected devices accept traffic to IP addresses that are reserved for use by the Ethernet Out-of-Band...

5CVSS6.7AI score0.02482EPSS
Exploits1References1
seebug
seebug
added 2007/09/08 12:0 a.m.39 views

Cisco内容交换模块多个远程拒绝服务漏洞

BUGTRAQ ID: 25547 Catalyst内容交换模块(CSM)是Catalyst 6500和7600系列的集成服务器负载均衡线卡,用于改善客户端通讯对端点的响应时间。 Catalyst内容交换模块处理畸形流量时存在拒绝服务漏洞,远程攻击者可能利用此漏洞导致服务不可用。 如果运行受影响代码的CSM模块接收到了无序的特殊TCP报文,就可能触发拒绝服务的情况,导致CPU达到100%的使用率,或由于icp.fatPath长度错误导致FPGA4异常而重载。这个漏洞在Cisco bug ID中记录为CSCsd27478。...

6.8AI score
Exploits0
nessus
nessus
added 2007/08/24 12:0 a.m.18 views

ATI Catalyst Dynamic Driver (atidsmxx.sys) Local Privilege Escalation

The version of the ATI Catalyst Software Suite installed on the remote Windows Vista host reportedly allows a local user to load unsigned drivers into the kernel and thereby gain administrative control of the affected host. C Tenable Network Security, Inc. include"compat.inc"; if description...

6.9CVSS5.4AI score0.00295EPSS
Exploits0References5
nvd
nvd
added 2007/07/26 12:30 a.m.21 views

CVE-2007-4012

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service ARP storm via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374...

7.1CVSS6.6AI score0.01684EPSS
Exploits0References7
cve
cve
added 2007/07/26 12:0 a.m.49 views

CVE-2007-4011

CVE-2007-4011 affects Cisco 4100/4400, Airespace 4000, and Catalyst 6500/3750 WLC software. The vulnerability permits remote DoS (traffic amplification or ARP storm) via crafted unicast ARP requests. Impact arises when the destination MAC is unknown to Layer-2 infrastructure (CSCsj69233) or durin...

7.1CVSS6.7AI score0.0163EPSS
Exploits0References6Affected Software1
cvelist
cvelist
added 2007/07/26 12:0 a.m.23 views

CVE-2007-4012

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service ARP storm via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374...

6.6AI score0.01684EPSS
Exploits0References7
cvelist
cvelist
added 2007/07/26 12:0 a.m.26 views

CVE-2007-4011

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software before 3.2 20070727, 4.0 before 20070727, and 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service traffic amplification or ARP storm via a crafted unicast ARP request that 1...

6.7AI score0.0163EPSS
Exploits0References6
cve
cve
added 2007/07/26 12:0 a.m.46 views

CVE-2007-4012

CVE-2007-4012 affects Cisco 4100/4400, Airespace 4000, and Catalyst 6500/3750 WLC software. Versions before 4.1.180.0 are vulnerable to a remote DoS caused by a broadcast ARP packet targeting the IP of a known client context (CSCsj50374). Impact: ARP storm; CVSS v2 base score 7.1 ( HIGH ). Remedi...

7.1CVSS6.6AI score0.01684EPSS
Exploits0References7Affected Software1
nvd
nvd
added 2007/03/03 8:19 p.m.21 views

CVE-2007-1257

The Network Analysis Module NAM in Cisco Catalyst Series 6000, 6500, and 7600 allows remote attackers to execute arbitrary commands via certain SNMP packets that are spoofed from the NAM's own IP address...

10CVSS7.5AI score0.06812EPSS
Exploits0References9
prion
prion
added 2007/03/03 8:19 p.m.18 views

Code injection

Unspecified vulnerability in Cisco IOS 12.2SXA, SXB, SXD, and SXF; and the MSFC2, MSFC2a and MSFC3 running in Hybrid Mode on Cisco Catalyst 6000, 6500 and Cisco 7600 series systems; allows remote attackers on a local network segment to cause a denial of service software reload via a certain MPLS...

6.1CVSS6.6AI score0.01036EPSS
Exploits0References7Affected Software1
prion
prion
added 2007/03/03 8:19 p.m.18 views

Design/Logic Flaw

The Network Analysis Module NAM in Cisco Catalyst Series 6000, 6500, and 7600 allows remote attackers to execute arbitrary commands via certain SNMP packets that are spoofed from the NAM's own IP address...

10CVSS7.8AI score0.06812EPSS
Exploits0References9Affected Software9
Rows per page
Query Builder