EUVD-2004-1769

Malware in sbrugna...

EUVD-2004-0550

Malware in sbrugna...

Cisco CatOS 5.x/6.1/7.3/7.4 CiscoView HTTP Server Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5976/info Certain versions of Cisco CatOS ship with an embedded HTTP server. Switches that run these versions of CatOS are prone to a denial of service, which is due to a remote buffer overflow condition in the HTTP serve...

Cisco Aironet AP1x00 Malformed HTTP GET Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8290/info Cisco Aironet AP1x00 series devices are prone to a denial of service vulnerability upon receipt of a malformed HTTP GET request. Such a request will cause the device to reload. !/usr/bin/perl Cisco Global...

Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM (Network Analysis Module) Vulnerability

Cisco Catalyst 6000, 6500 series and Cisco 7600 series that have a Network Analysis Module installed are affected by a vulnerability, which could allow an attacker to gain complete control of the system. Only Cisco Catalyst systems that have a NAM on them are affected. This vulnerability affects...

多个Cisco产品报文远程拒绝服务漏洞

Bugraq ID: 36303 CVE ID：CVE-2009-0627 Cisco多个产品处理特殊构建的TCP报文存在问题，远程攻击者可以利用漏洞对设备进行拒绝服务攻击。 产品在TCP协议中存在一个拒绝服务攻击的问题。通过操作TCP连接状态，攻击者可以使系统处于长时间或在部分条件下可能永久的维护TCP连接的攻击状态。通过大量充足的开放TCP连接，攻击者可以使系统消耗内部缓冲区和内存资源，导致新的TCP连接不能访问目标端口或整个系统。需要重新启动获得正常功能。要利用这些漏洞需要通过完整的三次握手。...

Code injection

Unspecified vulnerability in the VLAN Trunking Protocol VTP implementation on Cisco IOS and CatOS, when the VTP operating mode is not transparent, allows remote attackers to cause a denial of service device reload or hang via a crafted VTP packet sent to a switch interface configured as a trunk...

net-snmp SNMPv3 authentication bypass (VU#877044)

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

Cisco Security Advisory: SNMP Version 3 Authentication Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: SNMP Version 3 Authentication Vulnerabilities Document ID: 107408 Advisory ID: cisco-sa-20080610-snmpv3 http://www.cisco.com/warp/public/707/cisco-sa-20080610-snmpv3.shtml Revision 1.0 For Public Release 2008 June 10 1600 UTC...

CVE-2002-2316

Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 may fail to learn MAC addresses from a single initial packet, causing unicast traffic to be broadcast and allowing remote attackers to sniff sensitive network information. The connected Red Hat and CVE registries confirm th...

Cisco Multiple Products Network Analysis Module (NAM) SNMP Spoofing Remote Code Execution

The remote host is a CISCO Catalyst or Cisco 7600 router that contains a version of IOS or CatOS that is affected by an SNMP communication spoofing vulnerability. An attacker may exploit this flaw to gain complete control of the remote device. C Tenable Network Security, Inc. include"compat.inc";...

Cisco Security Advisory: Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM (Network Analysis Module) Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM Network Analysis Module Vulnerability Advisory ID: cisco-sa-20070228-nam Revision 1.0 For Public Release 2007 February 28 -...

Cisco Security Advisory: Cisco Catalyst 6000, 6500 and Cisco 7600 Series MPLS Packet Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Catalyst 6000, 6500 and Cisco 7600 Series MPLS Packet Vulnerability Advisory ID: cisco-sa-20070228-mpls Revision 1.0 For Public Release 2007 February 28 -...

Re: Cisco IOS VTP issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, This is a Cisco response to an advisory published by FX of Phenoelit posted as of September 13, 2006 at: http://www.securityfocus.com/archive/1/445896/30/0/threaded and entitled "Cisco Systems IOS VTP multiple vulnerabilities". An official...

CVE-2006-4775

CVE-2006-4775 : Cisco IOS and Catalyst OS VTP DoS due to an integer wrap when processing a crafted VTP summary packet (revision 0x7FFFFFFF). An authenticated, remote attacker on the network could cause the device to stop processing configuration changes, potentially disrupting VLAN propagation. I...

CVE-2004-1775

Cisco VACM View-based Access Control MIB for Catalyst Operating Software CatOS 5.5 and 6.1 and IOS 12.0 and 12.1 allows remote attackers to read and modify device configuration via the read-write community string...

CVE-2004-1775

CVE-2004-1775 affects Cisco VACM (View-based Access Control MIB) used by CatOS and IOS. Affected: CatOS 5.5/6.1 and IOS 12.0/12.1. Issue: VACM permits remote read/write of device configuration via the read-write SNMP community string, enabling unauthorized read/modify actions. Evidence in connect...

CVE-2002-1222

The CVE-2002-1222 entry describes a vulnerability in Cisco Catalyst switches running CatOS 5.4–7.3 where the embedded HTTP server is vulnerable to a buffer overflow. An unauthenticated remote attacker can trigger a denial of service (reset/reboot) by sending a long HTTP request, as indicated by t...

CVE-2004-0551

Cisco CatOS 5.x before 5.520 through 8.x before 8.22 and 8.32GLX, as used in Catalyst switches, allows remote attackers to cause a denial of service system crash and reload by sending invalid packets instead of the final ACK portion of the three-way handshake to the 1 Telnet, 2 HTTP, or 3 SSH...

CVE-2004-0551

Cisco CatOS 5.x before 5.520 through 8.x before 8.22 and 8.32GLX, as used in Catalyst switches, allows remote attackers to cause a denial of service system crash and reload by sending invalid packets instead of the final ACK portion of the three-way handshake to the 1 Telnet, 2 HTTP, or 3 SSH...