14 matches found
CVE-2011-3296
Cisco FWSM (Firewall Services Module) is affected by CVE-2011-3296 in versions 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7) when IPv6 is in use. The issue is a memory corruption that can be triggered to cause a denial of service (module crash/hang) via crafted...
CVE-2005-4258
CVE-2005-4258 affects Cisco Catalyst Switches. A remote attacker can cause a device crash (DoS) by sending an IP packet where source and destination IPs/ports are identical and the SYN bit is set (LanD). The issue’s provenance is unknown and details originate from BIN/NVD entries. The NVD metrics...
CVE-2011-3299
CVE-2011-3299 corresponds to four SunRPC Inspection Denial of Service vulnerabilities (CVE-2011-3299, -3300, -3301, -3302) affecting Cisco ASA 5500 Series and ASA Services Module, and the Cisco FWSM. Affected by crafted SunRPC traffic that can cause device reloads; impacts include DoS. The Cisco ...
CVE-2011-3297
CVE-2011-3297 concerns Cisco’s Firewall Services Module (FWSM) used in Catalyst 6500/7600 platforms. The vulnerability arises when certain authentication configurations are used, allowing remote attackers to cause a denial of service (module crash) by issuing many network access authentication re...
CVE-2007-5134
Cisco Catalyst 6500 and Cisco 7600 Series devices are affected by CVE-2007-5134 due to handling of 127.0.0.0/8 EOBC (loopback) addresses, which could allow an unauthenticated, remote attacker to bypass ACLs and send packets to management interfaces such as the Supervisor or MSFC. The vulnerabilit...
CVE-2007-1258
CVE-2007-1258 describes an unspecified vulnerability in Cisco IOS 12.2SXA/SXB/SXD/SXF and in MSFC2/MSFC2a/MSFC3 in Hybrid Mode on Cisco Catalyst 6000/6500 and Cisco 7600 series. The issue allows remote attackers on the local network segment to trigger a denial of service (software reload) by send...
CVE-2011-3298
CVE-2011-3298 is a TACACS+ authentication bypass affecting Cisco ASA 5500 Series and Cisco FWSM. Cisco PSIRT advisories (cisco-sa-20111005-asa and cisco-sa-20111005-fwsm) document the vulnerability and note that a crafted TACACS+ reply can bypass authentication. The advisory sections also list re...
CVE-2011-3303
CVE-2011-3303 affects Cisco ASA 5500 Series and ASA Services Module (Catalyst 6500) and the FWSM, enabling an unauthenticated remote attacker to trigger a denial-of-service by sending malformed ILS traffic, causing the device to reload. The issue is tied to ILS inspection and is documented across...
CVE-2011-3301
CVE-2011-3301 covers SunRPC Inspection DoS in Cisco ASA 5500 Series and Cisco Catalyst 6500 Series ASA Services Module, plus FWSM; crafted SunRPC traffic can cause a remote device reload. The advisory lists affected software trains and the earliest fixed releases (e.g., ASA FWSM: 3.1→21, 3.2→22, ...
CVE-2011-3300
Cisco CVE-2011-3300 covers SunRPC inspection DoS vulnerabilities in Cisco ASA 5500 Series and the ASA Services Module (FWSM) for Catalyst 6500/7600. Affected product scope includes ASA software trains 7.0, 7.1, 7.2, 8.0–8.5 (specific fixed releases per train) and the FWSM software 3.1–4.x. The vu...
CVE-2011-3304
CVE-2011-3304 affects Cisco ASA 5500 Series appliances and the ASA Services Module in Cisco Catalyst 6500 Series devices. The issue is a Denial of Service: unauthenticated remote attackers can trigger a device reload by sending crafted MSN Instant Messenger traffic to MSN IM inspection. Affects s...
CVE-2011-3302
CVE-2011-3302 affects Cisco ASA 5500 series (and FWSM on Catalyst 6500) with specific ASA/FWSM software trains: 7.0 up to before 7.0(8.13), 7.1/7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1/8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2.6), and 8.5 before 8.5(1.1); FWSM 3.1 before ...
CVE-2004-1111
The CVE-2004-1111 issue affects Cisco IOS versions including 2.2(18)EW and 12.2(18)S/SE/SV/SW (and others) that run DHCP server/relay without the no service dhcp setting. The bug causes undeliverable DHCP packets to remain in the input queue and may exhaust it, allowing remote attackers to trigge...
CVE-2012-5037
CVE-2012-5037 affects Cisco IOS before 15.1(1)SY on Catalyst 6500/7600. The vulnerability arises in the ACL implementation, where a local attacker can trigger a denial of service (device reload) by executing a sequence: a no object-group command followed by an object-group command (Bug ID CSCts16...