Cisco Catalyst 2960 IOS 12.2(55)SE11 - ROCEM Remote Code Execution Exploit

Exploit for hardware platform in category remote exploits !/usr/bin/python Exploit Title: Cisco Catalyst 2960 - Buffer Overflow Exploit Details: https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ Date: 04.10.2017 Exploit Author: https://twitter.com/artkond Vendor Homepage:...

Cisco Catalyst 2960 IOS 12.2(55)SE11 - ROCEM Remote Code Execution

Cisco Catalyst 2960 IOS 12.255SE11 - ROCEM Remote Code Execution !/usr/bin/python Exploit Title: Cisco Catalyst 2960 - Buffer Overflow Exploit Details: https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ Date: 04.10.2017 Exploit Author: https://twitter.com/artkond Vendor Homepage...

Cisco Catalyst 2960 IOS 12.2(55)SE11 - 'ROCEM' Remote Code Execution

!/usr/bin/python Exploit Title: Cisco Catalyst 2960 - Buffer Overflow Exploit Details: https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ Date: 04.10.2017 Exploit Author: https://twitter.com/artkond Vendor Homepage: https://www.cisco.com/ Version: IOS version...

CVE-2016-6415

The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association SA negotiation request, aka Bu...

Memory corruption

Memory leak in Cisco IOS 12.2 in the Performance Routing Engine PRE module on uBR10000 devices allows remote authenticated users to cause a denial of service memory consumption or PXF process crash by sending docsIfMCmtsMib SNMP requests quickly, aka Bug ID CSCue65051...

CVE-2015-4204

Memory leak in Cisco IOS 12.2 in the Performance Routing Engine PRE module on uBR10000 devices allows remote authenticated users to cause a denial of service memory consumption or PXF process crash by sending docsIfMCmtsMib SNMP requests quickly, aka Bug ID CSCue65051...

Design/Logic Flaw

The TCP Input module in Cisco IOS 12.2 through 12.4 and 15.0 through 15.4, when NAT is used, allows remote attackers to cause a denial of service memory consumption or device reload via crafted TCP packets, aka Bug IDs CSCuh33843 and CSCuj41494...

CVE-2013-5481

Cisco IOS Software NAT implementation contains a vulnerability in PPTP handling that, when NAT is used, can be exploited by remote attackers sending crafted TCP port-1723 packets to cause a DoS and device reload. Affected releases include Cisco IOS 12.2 and 15.0–15.3. The issue is identified as B...

CVE-2012-4618

The CVE-2012-4618 issue affects Cisco IOS Software Network Address Translation NAT with the SIP ALG feature. The vulnerability arises when SIP payloads are translated for in-transit packets, causing a denial of service that can trigger a device reload. Affected IOS versions noted in the sources i...

CVE-2011-2057

The cat6000-dot1x component in Cisco IOS 12.2 before 12.233SXI7 does not properly handle 1 a loop between a dot1x enabled port and an open-authentication dot1x enabled port and 2 a loop between a dot1x enabled port and a non-dot1x port, which allows remote attackers to cause a denial of service...

Design/Logic Flaw

Cisco IOS 12.258SE, when a login banner is configured, allows remote attackers to cause a denial of service device reload by establishing two SSH2 sessions, aka Bug ID CSCto62631...

Cisco IOS HTTP access level authentication bypass

Added: 12/23/2010 CVE: CVE-2001-0537 BID: 2936 OSVDB: 578 Background The Cisco Internetwork Operating System IOS is the operating system used by Cisco routers. Problem A remote attacker could execute arbitrary commands at the highest privilege level level 15 without needing to authenticate by...

Code injection

IOS 12.252SE and 12.252SE1 on Cisco Industrial Ethernet IE 3000 series switches has 1 a community name of public for RO access and 2 a community name of private for RW access, which makes it easier for remote attackers to modify the configuration or obtain potentially sensitive information via SN...

PT-2008-5158 · Cisco · Cisco Ios

Name of the Vulnerable Software and Affected Versions: Cisco IOS versions 12.2 and 12.4 Description: The issue is related to a Denial of Service DoS attack from specially crafted packets in the Multi Protocol Label Switching MPLS Forwarding Infrastructure MFI in Cisco IOS. This can cause memory...

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service source: https://www.securityfocus.com/bid/25352/info Cisco IOS is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain CLI commands. To issue commands that trigger this vulnerability,...

CVE-2003-0511

CVE-2003-0511 affects Cisco Aironet AP1x00 series running IOS 12.2. A malformed URL can cause the web server to reload, enabling a denial-of-service condition. The vulnerability is addressed in IOS 12.2(11)JA1. Remediation/workarounds documented by Cisco include: (1) restrict access to the HTTP s...

CVE-2002-0339

Cisco IOS CVE-2002-0339 affects IOS 11.1CC–12.2 with Cisco Express Forwarding (CEF) enabled. The issue leaks fragments of previously processed packets by padding MAC-level packets to match the IP length, using data from earlier packets. Impact is information disclosure via network access; attacke...