6 matches found
CVE-2004-1435
Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.60 and 4.61, 4.5x, 4.10 to 4.13, 4.00 to 4.02, and earlier versions, allows remote attackers to cause a denial of service control card reset via a large number of TCP connections with an invalid response instead of th...
CVE-2004-1432
Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.60 and 4.61, 4.5x, 4.10 to 4.13, 4.00 to 4.02, and earlier versions, allows remote attackers to cause a denial of service control card reset via malformed 1 IP or 2 ICMP packets...
CVE-2004-0306
Cisco ONS 15327 before 4.13, ONS 15454 before 4.61, ONS 15454 SD before 4.13, and Cisco ONS 15600 before 1.30 enable TFTP service on UDP port 69 by default, which allows remote attackers to GET or PUT ONS system files on the current active TCC in the /flash0 or /flash1 directories...
Cisco Transaction Language 1 (TL1) interface fails to properly validate accounts with blank passwords
Overview There is a vulnerability in the Cisco Transaction Language 1 TL1 login interface that could allow a remote attacker to gain access to a Cisco ONS device. Description Transaction Language 1 TL1 is a widely used telecommunications management protocol. A default account, CISCO15, contains a...
CVE-2002-1558
Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote attackers to gain privileges by connecting to the account via Telnet...
CVE-2002-1555
Cisco ONS15454 and ONS15327 running ONS before 3.4 uses a "public" SNMP community string that cannot be changed, which allows remote attackers to obtain sensitive information...