9 matches found
CVE-2001-0751
The CVE-2001-0751 entry affects Cisco switches/routers running CBOS 2.3.8 and earlier, where predictable TCP Initial Sequence Numbers enable an attacker to spoof or hijack TCP connections. The vulnerability can allow remote connection spoofing without authentication, leading to partial confidenti...
CVE-2007-4430
CVE-2007-4430 affects Cisco IOS 12.0–12.4, where certain regular expressions used by the command “show ip bgp regexp” can trigger a denial-of-service condition. The issue enables context-dependent attackers to cause a device restart and BGP routing-table rebuild, with unauthenticated remote acces...
CVE-2001-0444
CVE-2001-0444 affects Cisco CBOS 2.3.0.053. The vulnerability arises because the router’s output of the show nat (sh nat) command is echoed to the terminal of the next user who connects via Telnet, potentially allowing that user to view sensitive information. The documented impact is partial conf...
CVE-2001-0753
CVE-2001-0753 affects Cisco CBOS 2.3.8 and earlier. The root cause is that passwords for exc/elevate privileges are stored in cleartext in NVRAM and a configuration file, enabling unauthorized users to obtain the credentials and gain privileges. The NVD metrics indicate a HIGH-impact, network-acc...
CVE-2001-1064
Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap are affected by CVE-2001-1064. The issue allows remote attackers to cause a denial of service by establishing multiple connections to the router via HTTP or telnet, causing the device to become unresponsive and stop forwarding packets. T...
CVE-2001-0754
Cisco CBOS 2.3.8 and earlier is affected. A remote attacker can trigger a denial of service by sending a sequence of large ICMP ECHO REPLY (ping) packets that causes the device to enter ROMMON mode and stop forwarding packets. Affected component is the CBOS software on Cisco devices; the root cau...
CVE-2001-0752
Cisco CBOS 2.3.8 and earlier: remote denial of service via an ICMP ECHO REQUEST with the IP Record Route option set. Affected component is Cisco CBOS; root cause described as processing ICMP ECHO REQUESTs with Record Route data, leading to inability to service requests (DoS). The available refere...
CVE-2001-1065
CVE-2001-1065 affects Cisco 600-series routers running CBOS 2.0.1–2.4.2ap, where the web-based configuration utility binds to port 80 even when web configuration services are disabled. This could leave the device accessible to an attacker via the web interface. Root cause: the process binds port ...
CVE-2002-0886
Cisco DSL CPE devices running CBOS 2.4.4 and earlier are affected by CVE-2002-0886. The issue allows remote attackers to cause a denial of service by sending (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, exhausting TCP/IP s...