PT-2017-17179 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco ASA Software versions prior to 9.17.12 Cisco ASA Software versions prior to 9.24.18 Cisco ASA Software versions prior to 9.43.12 Cisco ASA Software versions prior to 9.53.2 Cisco ASA Software versions prior to 9.62.2 Description: A flaw...

PT-2017-17181 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco ASA Software versions prior to 9.17.7 Cisco ASA Software versions prior to 9.24.11 Cisco ASA Software versions prior to 9.44 Cisco ASA Software versions prior to 9.53 Cisco ASA Software versions prior to 9.61.5 Description: A...

Cisco Wireless LAN Controller IPv6 UDP Packet Handling DoS (cisco-sa-20170405-wlc2)

According to its self-reported version, the Cisco Wireless LAN Controller WLC software running on the remote device is affected by a denial of service vulnerability in the IPv6 UDP ingress packet processing functionality due to incomplete IPv6 UDP header validation. An unauthenticated, remote...

PT-2017-2113 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco ASA Software versions prior to 8.47.31 Cisco ASA Software versions prior to 9.04.39 Cisco ASA Software versions prior to 9.17 Cisco ASA Software versions prior to 9.24.6 Cisco ASA Software versions prior to 9.33.8 Cisco ASA Software...

Cisco Wireless LAN Controller Denial of Service Vulnerability (CNVD-2017-05587)

The Cisco WLC is responsible for system-wide wireless LAN functions such as security policy, intrusion protection, RF management, quality of service, and mobility. A security vulnerability exists in IPv6 UDP ingress packet processing in the Cisco Wireless LAN Controller WLC. An unauthenticated...

Design/Logic Flaw

A vulnerability with IPv6 UDP ingress packet processing in Cisco Wireless LAN Controller WLC Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device. The vulnerability is due to incomplete IPv6 UDP header validation. An attacker could exploit this...

CVE-2016-9219

A vulnerability with IPv6 UDP ingress packet processing in Cisco Wireless LAN Controller WLC Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device. The vulnerability is due to incomplete IPv6 UDP header validation. An attacker could exploit this...

CVE-2016-9219

A vulnerability with IPv6 UDP ingress packet processing in Cisco Wireless LAN Controller WLC Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device. The vulnerability is due to incomplete IPv6 UDP header validation. An attacker could exploit this...

CVE-2016-9219

Cisco WLC IPv6 UDP packet handling vulnerability (CVE-2016-9219) in Cisco Wireless LAN Controller software affects 8.2.121.0 and 8.3.102.0. The issue stems from incomplete IPv6 UDP header validation in the ingress path, allowing an unauthenticated, remote attacker to trigger an unexpected device ...

Cisco Firepower Detection Engine SSL Denial of Service Vulnerability

A vulnerability in the detection engine reassembly of Secure Sockets Layer SSL packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition because the Snort process consumes a high level of CPU resources. The vulnerability...

Cisco IOS XE ANI Registrar DoS (cisco-sa-20170320-ani)

According to its self-reported version, the Cisco IOS XE software running on the remote device is affected by a denial of service vulnerability in the Autonomic Networking Infrastructure ANI registrar feature due to incomplete input validation of certain crafted packets. An unauthenticated,...

Cisco IOS Software Layer 2 Tunneling Protocol Denial of Service Vulnerability (cisco-sa-20170322-l2tp)

A vulnerability in the Layer 2 Tunneling Protocol L2TP parsing function of Cisco IOS Software could allow an unauthenticated, remote attacker to cause an affected device to reload. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and a...

Cisco IOS XE Software DHCP Client Denial of Service Vulnerability

A vulnerability in the DHCP client implementation of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C...

Cisco IOS XE Software for Cisco ASR 920 Series Routers Denial of Service Vulnerability

Cisco IOS and IOS XE Software are both operating systems developed by Cisco for its network devices. A denial of service vulnerability exists in Cisco IOS XE Software. An attacker could exploit this vulnerability to cause a reload of an affected device, resulting in a denial of service...

Input validation

A vulnerability in the Layer 2 Tunneling Protocol L2TP parsing function of Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and Cisco IOS XE 3.1 through 3.18 could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient validation...

CVE-2017-3857

A vulnerability in the Layer 2 Tunneling Protocol L2TP parsing function of Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and Cisco IOS XE 3.1 through 3.18 could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient validation...

CVE-2017-3857

A vulnerability in the Layer 2 Tunneling Protocol L2TP parsing function of Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and Cisco IOS XE 3.1 through 3.18 could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient validation...

CVE-2017-3856

A vulnerability in the web user interface of Cisco IOS XE 3.1 through 3.17 could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient resource handling by the affected software when the web user interface is under a high load. A...

Cisco IOS and IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability

A vulnerability in the Layer 2 Tunneling Protocol L2TP parsing function of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient validation of L2TP packets. An attacker could exploit this...

Cisco IOS XE Software Web User Interface Denial of Service Vulnerability

A vulnerability in the web user interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient resource handling by the affected software when the web user interface is under a high load. An attack...