1685 matches found
Cisco内容交换模块7层负载均衡拒绝服务漏洞
BUGTRAQ ID: 29216 CVECAN ID: CVE-2008-1749 Catalyst内容交换模块(CSM)是Catalyst 6500和7600系列的集成服务器负载均衡线卡,用于改善客户端通讯对端点的响应时间。 如果对CSM或CSM-S配置了7层负载均衡的话,Cisco CSM和Cisco CSM-S的某些软件版本中就会存在内存泄露漏洞。当CSM或CSM-S处理带有特制TCP标记组合的TCP段且无法确认负载均衡时,由于CSM/CSM-S后的服务器过载和/或无法接受TCP连接,可能触发内存泄露。...
Cisco Security Advisory: Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720 Advisory ID: cisco-sa-20080326-queue http://www.cisco.com/warp/public/707/cisco-sa-20080326-queue.shtml Revision...
Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module Advisory ID: cisco-sa-20071219-fwsm ============ Revision 1.0 ============ Last Updated 2007 December 19 1600 UTC GMT For Public Release 2007 December 19...
CVE-2002-2316
Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing...
CVE-2002-2316
Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 may fail to learn MAC addresses from a single initial packet, causing unicast traffic to be broadcast and allowing remote attackers to sniff sensitive network information. The connected Red Hat and CVE registries confirm th...
CVE-2002-2239
The Cisco Optical Service Module OSM for the Catalyst 6500 and 7600 series running Cisco IOS 12.18E through 12.113.4E allows remote attackers to cause a denial of service hang via a malformed packet...
CVE-2002-2239
The Cisco Optical Service Module (OSM) in Catalyst 6500/7600 chassis with IOS 12.1(8)E–12.1(13.4)E is affected. A malformed-packet can be sent remotely to cause a denial of service (hang) via the OSM, as documented in multiple sources (OSM LC IOS vulnerability). The issue originates from how spec...
CVE-2007-5134
Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel EOBC internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended...
CVE-2007-5134
Cisco Catalyst 6500 and Cisco 7600 Series devices are affected by CVE-2007-5134 due to handling of 127.0.0.0/8 EOBC (loopback) addresses, which could allow an unauthenticated, remote attacker to bypass ACLs and send packets to management interfaces such as the Supervisor or MSFC. The vulnerabilit...
Cisco IOS on Catalyst 6500 and Cisco 7600 Access Control List Bypass Vulnerability
Cisco IOS running on Catalyst 6500 and Cisco 7600 contains a vulnerability that could allow an unauthenticated, remote attacker to bypass configured ACLs. The vulnerability exists because the affected devices accept traffic to IP addresses that are reserved for use by the Ethernet Out-of-Band...
Cisco内容交换模块多个远程拒绝服务漏洞
BUGTRAQ ID: 25547 Catalyst内容交换模块(CSM)是Catalyst 6500和7600系列的集成服务器负载均衡线卡,用于改善客户端通讯对端点的响应时间。 Catalyst内容交换模块处理畸形流量时存在拒绝服务漏洞,远程攻击者可能利用此漏洞导致服务不可用。 如果运行受影响代码的CSM模块接收到了无序的特殊TCP报文,就可能触发拒绝服务的情况,导致CPU达到100%的使用率,或由于icp.fatPath长度错误导致FPGA4异常而重载。这个漏洞在Cisco bug ID中记录为CSCsd27478。...
ATI Catalyst Dynamic Driver (atidsmxx.sys) Local Privilege Escalation
The version of the ATI Catalyst Software Suite installed on the remote Windows Vista host reportedly allows a local user to load unsigned drivers into the kernel and thereby gain administrative control of the affected host. C Tenable Network Security, Inc. include"compat.inc"; if description...
CVE-2007-4012
Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service ARP storm via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374...
CVE-2007-4011
CVE-2007-4011 affects Cisco 4100/4400, Airespace 4000, and Catalyst 6500/3750 WLC software. The vulnerability permits remote DoS (traffic amplification or ARP storm) via crafted unicast ARP requests. Impact arises when the destination MAC is unknown to Layer-2 infrastructure (CSCsj69233) or durin...
CVE-2007-4012
Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service ARP storm via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374...
CVE-2007-4011
Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software before 3.2 20070727, 4.0 before 20070727, and 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service traffic amplification or ARP storm via a crafted unicast ARP request that 1...
CVE-2007-4012
CVE-2007-4012 affects Cisco 4100/4400, Airespace 4000, and Catalyst 6500/3750 WLC software. Versions before 4.1.180.0 are vulnerable to a remote DoS caused by a broadcast ARP packet targeting the IP of a known client context (CSCsj50374). Impact: ARP storm; CVSS v2 base score 7.1 ( HIGH ). Remedi...
CVE-2007-1257
The Network Analysis Module NAM in Cisco Catalyst Series 6000, 6500, and 7600 allows remote attackers to execute arbitrary commands via certain SNMP packets that are spoofed from the NAM's own IP address...
Code injection
Unspecified vulnerability in Cisco IOS 12.2SXA, SXB, SXD, and SXF; and the MSFC2, MSFC2a and MSFC3 running in Hybrid Mode on Cisco Catalyst 6000, 6500 and Cisco 7600 series systems; allows remote attackers on a local network segment to cause a denial of service software reload via a certain MPLS...
Design/Logic Flaw
The Network Analysis Module NAM in Cisco Catalyst Series 6000, 6500, and 7600 allows remote attackers to execute arbitrary commands via certain SNMP packets that are spoofed from the NAM's own IP address...