EUVD-2002-0336

Malware in sbrugna...

CVE-2025-20189

A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers with Route Switch Processor 3 RSP3C could allow an unauthenticated, adjacent attacker to trigger a denial of service DoS condition. This vulnerability is due to...

Cisco ASR 9000 Series Aggregation Services Routers ACL Bypass Vulnerability

A vulnerability in the TCP flags inspection feature for access control lists ACLs on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass protection offered by a configured ACL on an affected device. The vulnerability is due to incorrect...

Race condition

Race condition in the Common Classification Engine CCE in the Measurement, Aggregation, and Correlation Engine MACE implementation in Cisco IOS 15.42T3 and earlier allows remote attackers to cause a denial of service device reload via crafted network traffic that triggers improper handling of the...

CVE-2015-0609

CVE-2015-0609 affects Cisco IOS MACE (Common Classification Engine) within the MACE platform. The root cause is a race condition between process switching and Cisco Express Forwarding (CEF) switching in the CCE, allowing unauthenticated remote attackers to trigger improper timing handling and cau...

Race condition

Race condition in the object-group ACL feature in Cisco IOS 15.52T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding CEF switching, aka Bug ID...

CVE-2015-0610

Race condition in the object-group ACL feature in Cisco IOS 15.52T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding CEF switching, aka Bug ID...

Cisco IOS Software Access Control List Bypass Vulnerability

A vulnerability in Cisco IOS Software access control lists ACLs that use object groups could occasionally allow an unauthenticated, remote attacker to bypass the ACL. The vulnerability is due to a race condition between process switching and Cisco Express Forwarding switching while evaluating ACL...

Design/Logic Flaw

The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service device reload via crafted MPLS packets that are not properly handled during IP header validation, aka Bug ID CSCuj23992...

Cisco IOS Software Tunnels Vulnerability - Cisco Systems

Cisco devices running affected versions of Cisco IOS Software are vulnerable to a denial of service DoS attack if configured for IP tunnels and Cisco Express Forwarding. Cisco has released free software updates that address this vulnerability. TRUSTED...

CVE-2009-2873

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via malformed packets, aka Bug ID CSCsx70889...

Code injection

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via a malformed packet that is not properly handled during switching from one tunnel to a second tunnel, aka Bug IDs CSCsh975...

Code injection

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via malformed packets, aka Bug ID CSCsx70889...

CVE-2009-2872

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via a malformed packet that is not properly handled during switching from one tunnel to a second tunnel, aka Bug IDs CSCsh975...

CVE-2002-0339

Cisco IOS 11.1CC through 12.2 with Cisco Express Forwarding CEF enabled includes portions of previous packets in the padding of a MAC level packet when the MAC packet's length is less than the IP level packet length...

CVE-2002-0339

Cisco IOS 11.1CC through 12.2 with Cisco Express Forwarding CEF enabled includes portions of previous packets in the padding of a MAC level packet when the MAC packet's length is less than the IP level packet length...

Cisco IOS Cisco Express Forwarding (CEF) Previous Packet Information Disclosure (CSCdu20643)

If the remote device has Cisco Express Forwarding CEF enabled, it may leak information from previous packets that have been handled by the device. An attacker may use this flaw to sniff your network remotely. This vulnerability is documented as Cisco Bug ID CSCdu20643. C Tenable Network Security,...

Cisco Security Advisory: Data Leak with Cisco Express Forwarding

-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: Data Leak with Cisco Express Forwarding Enabled Revision 1.0 For Public Release 2002 February 27 08:00 UTC -0800 - -------------------------------------------------------------------------- Summary ======= All Cisco devices running Cisco...

Data Leak with Cisco Express Forwarding Enabled

...