15 matches found
EUVD-2008-4111
Malware in sbrugna...
EUVD-2018-1308
Malware in sbrugna...
The vulnerability of the Snort intrusion detection system of Cisco Firepower Threat Defense (FTD), which includes network devices like Cisco Catalyst, routers such as ISR and ISA, and the virtual router with integrated ISRv services, allows attackers to compromise the integrity of protected information.
The vulnerability of the Snort intrusion detection system of Cisco Firepower Threat Defense FTD, as well as Cisco Catalyst network devices, ISR and ISA routers, and the integrated-service virtual router ISRv, is related to security configuration errors. Exploiting this vulnerability can allow a...
CVE-2018-0485
A vulnerability in the SM-1T3/E3 firmware on Cisco Second Generation Integrated Services Routers ISR G2 and the Cisco 4451-X Integrated Services Router ISR4451-X could allow an unauthenticated, remote attacker to cause the ISR G2 Router or the SM-1T3/E3 module on the ISR4451-X to reload, resultin...
Design/Logic Flaw
A vulnerability in the ROM Monitor ROMMON code of Cisco IR800 Integrated Services Router Software could allow an unauthenticated, local attacker to boot an unsigned Hypervisor on an affected device and compromise the integrity of the system. The vulnerability is due to insufficient sanitization o...
CVE-2017-12223
Cisco IR800 Integrated Services Router Software ROMMON has an input validation vulnerability in ROMMON code that could let an unauthenticated, local attacker boot an unsigned Hypervisor via console access, modify ROMMON variables, and execute arbitrary code to install malicious Hypervisor firmwar...
CVE-2017-12223
A vulnerability in the ROM Monitor ROMMON code of Cisco IR800 Integrated Services Router Software could allow an unauthenticated, local attacker to boot an unsigned Hypervisor on an affected device and compromise the integrity of the system. The vulnerability is due to insufficient sanitization o...
Cisco IR800 Integrated Services Router ROM Monitor Input Validation Vulnerability
A vulnerability in the ROM Monitor ROMMON code of Cisco IR800 Integrated Services Router Software could allow an unauthenticated, local attacker to boot an unsigned Hypervisor on an affected device and compromise the integrity of the system. The vulnerability is due to insufficient sanitization o...
CVE-2015-6289
Cisco IOS 15.53M on Integrated Services Router ISR 800, 819, and 829 devices allows remote attackers to cause a denial of service memory consumption via crafted TCP packets on the SSH port, aka Bug ID CSCuu13476...
Design/Logic Flaw
Cisco IOS 15.53M on Integrated Services Router ISR 800, 819, and 829 devices allows remote attackers to cause a denial of service memory consumption via crafted TCP packets on the SSH port, aka Bug ID CSCuu13476...
CVE-2015-6289
Cisco IOS 15.53M on Integrated Services Router ISR 800, 819, and 829 devices allows remote attackers to cause a denial of service memory consumption via crafted TCP packets on the SSH port, aka Bug ID CSCuu13476...
Code injection
The Network-Based Application Recognition NBAR protocol implementation in Cisco IOS 15.3100M and earlier on Cisco 2900 Integrated Services Router aka Cisco Internet Router devices allows remote attackers to cause a denial of service NBAR process hang via IPv4 packets, aka Bug ID CSCuo73682...
CVE-2015-0586
The Network-Based Application Recognition NBAR protocol implementation in Cisco IOS 15.3100M and earlier on Cisco 2900 Integrated Services Router aka Cisco Internet Router devices allows remote attackers to cause a denial of service NBAR process hang via IPv4 packets, aka Bug ID CSCuo73682...
Cisco 871集成服务路由器跨站请求伪造漏洞
BUGTRAQ ID: 31218 Cisco 871集成服务路由器是一款小型的宽带无线路由器。 Cisco 871路由器的HTTP管理接口存在跨站请求伪造漏洞,如果用户受骗查看了嵌有恶意代码的网页的话,就会导致在路由器上以15级权限(root)执行任意命令。 Cisco 871 Integrated Services Router Cisco ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.cisco.com/warp/public/707/advisory.html html body body...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the HTTP Administration component in Cisco IOS 12.4 on the 871 Integrated Services Router allow remote attackers to execute arbitrary commands via 1 a certain "show privilege" command to the /level/15/exec/- URI, and 2 a certain "alias...